From 2abe5b56316998b61ee22f8f1603df1945fbe2c2 Mon Sep 17 00:00:00 2001
From: chmod777Alex <59450257+alexegorov1@users.noreply.github.com>
Date: Thu, 24 Apr 2025 15:35:12 -0400
Subject: [PATCH] Update README.md (#10566)
Updated the file with 3 more new questions and answers related to segmentation. The original section lacked depth in real-world application. These additions provide practical, security-relevant context that benefits both developers and architects working with dynamic infrastructure.
This PR follows the existing structure and tone of the README for seamless integration.
---
topics/security/README.md | 28 ++++++++++++++++++++++++++++
1 file changed, 28 insertions(+)
diff --git a/topics/security/README.md b/topics/security/README.md
index a4eb9fb..f1d151f 100644
--- a/topics/security/README.md
+++ b/topics/security/README.md
@@ -640,3 +640,31 @@ You can’t. You will always be exposed to security risk once you start using op
- Network: Modify network devices and their configuration to create microsegmentation
+
+
+What are ephemeral environments in the context of Microsegmentation?
+
+- These are short-lived resources like containers or serverless functions that start and stop quickly.
+- Because they don’t last long, they need security rules that can change just as fast.
+- Microsegmentation helps by giving each one exactly the network access it needs — nothing more.
+
+
+
+
+How does Microsegmentation help prevent lateral movement?
+
+- It sets tight rules for how services or systems can talk to each other.
+- If one system gets hacked, the attacker can’t easily move to others.
+- By dividing systems into smaller zones, it makes the whole network harder to break into.
+
+
+
+
+What challenges arise when scaling Microsegmentation?
+
+- As more systems get added, managing all the rules becomes harder.
+- It’s tough to keep security rules consistent when everything’s changing all the time.
+- You also have to be careful not to slow things down while keeping everything secure.
+
+
+