Book Image

Software Architecture Patterns for Serverless Systems - Second Edition

By : John Gilbert
Book Image

Software Architecture Patterns for Serverless Systems - Second Edition

By: John Gilbert

Overview of this book

Organizations undergoing digital transformation rely on IT professionals to design systems to keep up with the rate of change while maintaining stability. With this edition, enriched with more real-world examples, you’ll be perfectly equipped to architect the future for unparalleled innovation. This book guides through the architectural patterns that power enterprise-grade software systems while exploring key architectural elements (such as events-driven microservices, and micro frontends) and learning how to implement anti-fragile systems. First, you'll divide up a system and define boundaries so that your teams can work autonomously and accelerate innovation. You'll cover the low-level event and data patterns that support the entire architecture while getting up and running with the different autonomous service design patterns. This edition is tailored with several new topics on security, observability, and multi-regional deployment. It focuses on best practices for security, reliability, testability, observability, and performance. You'll be exploring the methodologies of continuous experimentation, deployment, and delivery before delving into some final thoughts on how to start making progress. By the end of this book, you'll be able to architect your own event-driven, serverless systems that are ready to adapt and change.
Table of Contents (16 chapters)
Other Books You May Enjoy

Auditing continuously

In Chapter 2, Defining Boundaries and Letting Go, we covered the topic of governance and the impact it can have on the speed of innovation. Governance covers a wide spectrum of subjects, but by and large we focus on security and the compliance of a system with security regulations, such as NIST, PCI, GDPR, and HIPAA, plus internal policies and best practices. Throughout this chapter we have covered how to secure our serverless systems in depth and by design. Now we need to ensure that we are doing so and not straying of course.Continuous auditing is an approach to governance that allow us to put guardrails in place without impeding the speed of innovation. We will look at automating audits at build-time and run-time and then look at how our architecture helps us audit the users of the system as well.

Build-time and run-time auditing

Confidence and automation are prerequisites for continuous deployment and delivery. Teams that are unsure about the security of their...