Segmentation has been around for decades but it’s been primarily focused on addressing performance and efficiencies in the network — not addressing security requirements in modern application environments.
Matt Glenn’s recent post on network segmentation vs. security segmentation likens it to trying to back a Winnebago into a compact parking space. As you might imagine, using the network to try to solve for security is not working for most.
There are some things to consider as you look to segmentation to improve control and security across your application environment. Not all solutions have the same approach or the right components to meet requirements. This is especially true in environments where you find a variety of platforms (e.g., a bit of bare-metal, a few flavors of hypervisors, and some containers lurking), a mix of infrastructure (data center, cloud and hybrid), and things that move and move fast (moving workloads, auto-scaling apps, DevOps).
Illumio's Nathanael Iversen recently did a video outlining the 5 core capabilities that you need in a segmentation platform to make sure you can secure your apps today and in the future.
Check out the 5 Requirements for Adaptive Segmentation video for more.