Defence In Dept
Learn about defense in depth in this lesson.
What is Defence in Depth?
Microsoft uses Azure Defense in Depth, a thorough security strategy, to safeguard its Azure cloud platform and the services it hosts. Defense in depth is a commonly utilized security tactic in various IT settings, not just Azure. Creating overlapping layers of protection and making it more difficult for attackers to penetrate the system and compromise data or services requires stacking several security mechanisms throughout the infrastructure.
Defense in depth is a comprehensive security strategy that involves layering multiple security measures across different aspects of an IT environment. Let's explore how Defense in Depth principles can be applied to various components in the context of Azure:
Physical security: Physical security in Azure refers to the measures taken to protect the physical data centers and infrastructure that host Azure services. These measures include access controls, surveillance systems, biometric authentication, and security personnel. Microsoft ensures that physical data centers have restricted access, with only authorized personnel allowed entry. Additionally, data centers are equipped with redundant power, cooling, and fire suppression systems to protect against physical threats.
Policy and access: Azure provides robust Identity and Access Management (IAM) capabilities through ...