Evaluating Zero Trust Architecture Solutions in Cloud Native Environments : A Comparative Performance Study

Larsson, Ludvig

umu.sePublications

Simple search

Advanced search -
Research publications Advanced search -
Student theses Statistics

English Svenska Norsk

Change search

Cite ExportLink to record

Permanent link

https://urn.kb.se/resolve?urn=urn:nbn:se:umu:diva-240216

Direct link

https://umu.diva-portal.org/smash/record.jsf?pid=diva2:1969191

Cite

Citation style

apa
ieee
vancouver
Other style

More styles

Language

de-DE
en-GB
en-US
fi-FI
nn-NO
nn-NB
sv-SE
Other locale

More languages

Output format

html
text
asciidoc
rtf

Evaluating Zero Trust Architecture Solutions in Cloud Native Environments: A Comparative Performance Study

Larsson, Ludvig

Umeå University, Faculty of Science and Technology, Department of Computing Science.

2025 (English)Independent thesis Advanced level (degree of Master (Two Years)), 20 credits / 30 HE creditsStudent thesis

Abstract [en]

Zero trust is a paradigm that has emerged from the need for better security in cloud native environments. The paradigm moves away from traditional parameter-based security to a more sophisticated method in which segmentation, user identities, observability, and request studies are utilized.

This thesis studies two enterprise solutions offered by AWS and Microsoft Azure which are compared by documentation and in practice. Moreover, the practical comparison focuses on the performance aspects of the solutions and how they change as zero trust principles are applied. In evaluating the solutions, four systems have been implemented. These consist of two solutions with zero trust and two without zero trust principles, where they are compared to show the latency overhead. The purpose of this thesis is to provide guidance as to when one of the two solutions can be preferred in terms of performance and overall zero trust coverage.

Comparison by documentation and performance showed a static increase in latency for requests made with zero trust principles applied. However, the increase in latency is hard to define and compare, as the providers do not offer the ability to specify how the services are to be hosted below region and availability zone level. Thus, making the performance obsolete in the choice of the service provider. Instead, the work showed the importance domain knowledge of a service provider as a major factor in the decision.

Place, publisher, year, edition, pages

2025. , p. 36

Series

UMNAD ; 1557

Keywords [en]

Zero Trust, Zero Trust Architecture, Performance, Latency, Service Provider, AWS, Microsoft Azure

National Category

Computer Sciences

Identifiers

URN: urn:nbn:se:umu:diva-240216OAI: oai:DiVA.org:umu-240216DiVA, id: diva2:1969191

External cooperation

Omegapoint AB

Educational program

Master of Science Programme in Computing Science and Engineering

Presentation

2025-06-04, 09:00 (English)

Supervisors

Eklund, Patrik, Docent

Examiners

Björklund, Henrik, Docent

Available from: 2025-06-16 Created: 2025-06-14 Last updated: 2025-06-16Bibliographically approved

Open Access in DiVA

fulltext(5085 kB)

45 downloads

File information

File name FULLTEXT01.pdfFile size 5085 kBChecksum SHA-512

ee8b8f8e3640bb9df5c739cfd44667b8132927e3171a35ba2d6a96bb888d3ddc6b940adfbe6d8173c98ae36dd8665d7b98088dcf3d34b252bf953fe00eb33971

Type fulltextMimetype application/pdf

Total: 45 downloads

The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

urn-nbn

Total: 205 hits