
Cloud-native security has become an essential paradigm in modern computing, aligning security strategies with the dynamic and scalable architecture of cloud-native applications. As enterprises transition from traditional on-premises environments to distributed, containerized, and microservices-based infrastructure, the security landscape shifts dramatically. This review synthesizes current research and best practices in cloud-native security, outlining critical challenges, innovative solutions, and industry trends. Cloud-native environments are characterized by their reliance on containers, Kubernetes, service meshes, and serverless functions, which bring new opportunities alongside new threats. The paper discusses how traditional perimeter-based security approaches are being replaced by identity-driven, zero-trust models, embedding security into every layer of application design and deployment. Topics such as secure software supply chains, runtime protection, compliance automation, and infrastructure-as-code security are explored. This review aims to provide a single resource for researchers, DevSecOps practitioners, and enterprise architects seeking a comprehensive understanding of cloud-native security, emphasizing the importance of collaboration between development, operations, and security teams. Through an in-depth analysis of technologies, frameworks, and strategies, the article clarifies how organizations can address the unique risks present in modern cloud-native ecosystems while enabling agility and continuous delivery. By surveying academic literature and industry reports prior to 2014, we situate key advancements in their historical context, revealing the trajectory toward the current state of cloud-native security. The findings underscore the necessity for proactive, automated, and scalable security practices that evolve with cloud-native application lifecycles.
- Cloud-native security, Zero Trust, Container security, DevSecOps, Kubernetes
- Cloud-native security, Zero Trust, Container security, DevSecOps, Kubernetes
| selected citations These citations are derived from selected sources. This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically). | 0 | |
| popularity This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network. | Average | |
| influence This indicator reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically). | Average | |
| impulse This indicator reflects the initial momentum of an article directly after its publication, based on the underlying citation network. | Average |
