Using multiple compartments with restrictions in each area, often called micro-segmentation, sets tight controls for data and applications. This approach significantly limits lateral movement. Having one perimeter control or a gateway that forwards traffic without stricter verification does not confine threats within smaller areas. Granting broader connectivity across the environment loosens controls, permitting unwanted traversal.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is micro-segmentation in system design?
Open an interactive chat with Bash
Why does using a single perimeter control pose a security risk?
Open an interactive chat with Bash
How does micro-segmentation prevent lateral movement of threats?