Security-First Design Principles for Multi-Tenant Cloud-Native Application Frameworks in Regulated Industries

Authors

  • Rynosuke Tanizaki Independent Researcher, Australia Author

Keywords:

security-first design, cloud-native, multi-tenant, regulated industries, zero trust, compliance, DevSecOps, application architecture

Abstract

In regulated industries, securing multi-tenant cloud-native application frameworks demands rigorous attention to design principles that prioritize security from inception. This paper explores critical security-first principles such as zero trust, policy-driven architecture, tenant isolation, secure software supply chain, and compliance integration. Through literature analysis and current trends, it also identifies practical architectures and discusses key implementation challenges. A data-driven overview illustrates how adoption varies across sectors like healthcare and finance. This study contributes to establishing a secure, compliant, and scalable foundation for cloud-native applications in multi-tenant contexts.

References

Kumar, T.V. (2016). Layered App Security Architecture for Protecting Sensitive Data. PhilPapers.org

Gummadi, V. P. K. (2019). Microservices architecture with APIs: Design, implementation, and MuleSoft integration. Journal of Electrical Systems, 15(4), 130–134. https://doi.org/10.52783/jes.9328

Vardia, A.S., Chaudhary, A., Agarwal, S. (2023). Cloud Security Essentials: A Detailed Exploration. Wiley Online Library.

Ahmed, W. (2022). Trends and Challenges in Securing Cloud Environments. Premier Journal of Computer Science.

Kamaluddin, K. (2023). Network Isolation in Multi-Tenant Architectures. PhilArchive.org.

Arif, T., Jo, B., Park, J.H. (2023). Privacy-Enhancing Security in Cloud-Native Systems. Sensors.

Adewusi, B.A., Adekunle, B.I., Mustapha, S.D., Uzoka, A.C. (2022). Cloud-Native Architecture for Regulated Multi-Stakeholder Environments. ResearchGate.

Eboseremen, B.O., Ogedengbe, A.O. (2022). Secure Data Integration in Multi-Tenant Cloud Environments. Journal of Frontiers.

Gummadi, V. P. K. (2020). API design and implementation: RAML and OpenAPI specification. Journal of Electrical Systems, 16(4). https://doi.org/10.52783/jes.9329

Chandrasekaran, S., Kapoor, G. (2021). Enhancing Trust in Multi-Tenant SaaS Platforms Using Context-Aware Security. Journal of Cloud Computing, 10(1), 1–17.

Lee, J.H., Kim, S., Moon, Y.S. (2020). A Survey on Access Control Models for Cloud-Based Multi-Tenant Systems. Cluster Computing, 23(2), 955–972.

Shraim, H., Qamar, S., Khan, M.K. (2023). Mitigating Insider Threats in Cloud Environments via Behavior-Based Access Monitoring. Journal of Network and Computer Applications, 206, 103465.

Downloads

Published

2022-02-09

Issue

Vol. 3 No. 1 (2022): ISCSITR- INTERNATIONAL JOURNAL OF DATA ENGINEERING (ISCSITR-IJDE)

Section

Articles

License

Copyright (c) 2022 Rynosuke Tanizaki (Author)

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.