The latest articles on DEV Community by Illya Kryushenko (@architect-cz). https://dev.to/architect-cz https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3898126%2F7f0846c6-6c60-4992-b7e6-3648c1f5391f.jpg https://dev.to/architect-cz en Illya Kryushenko Sun, 26 Apr 2026 00:17:54 +0000 https://dev.to/architect-cz/trying-to-connect-cloud-architecture-caf-zero-trust-with-iac-validation-535e https://dev.to/architect-cz/trying-to-connect-cloud-architecture-caf-zero-trust-with-iac-validation-535e <h2> Trying to connect cloud architecture (CAF / Zero Trust) with IaC validation </h2> <p>We often say that architecture defines intent, while Infrastructure as Code (IaC) defines implementation.</p> <p>But in practice, they drift apart very quickly.</p> <ul> <li>Architecture lives in documents (CAF, Zero Trust, internal HLDs)</li> <li>IaC reflects what is actually deployed</li> <li>There is no reliable way to verify that one matches the other</li> </ul> <h2> The problem </h2> <p>IaC gives us precision, but not meaning.</p> <p>Architecture gives us meaning, but not verification.</p> <p>So we end up in a situation where:</p> <ul> <li>a system is “correctly deployed”</li> <li>but architecturally wrong</li> </ul> <p>And we only discover that during reviews, audits, or incidents.</p> <h2> A small experiment </h2> <p>I built a small PoC to explore whether architecture can be represented as a structured model and validated against Terraform state.</p> <p>The idea is simple:</p> <blockquote> <p>Risk → Control → Constraint → Implementation → Validation</p> </blockquote> <p>Instead of validating individual resources, the model allows you to evaluate architecture at multiple levels:</p> <h3> Mapping level </h3> <ul> <li> <code>PASS</code> – resource matches expected configuration</li> <li> <code>FAIL</code> – resource exists but is misconfigured</li> <li> <code>MISSING</code> – resource is not present</li> </ul> <h3> Control level </h3> <ul> <li> <code>FAILED</code> – at least one mapping fails</li> <li> <code>INCOMPLETE</code> – partially implemented</li> <li> <code>MISSING</code> – not implemented at all</li> </ul> <h3> Risk level </h3> <ul> <li> <code>EXPOSED</code> – controls are not fully implemented</li> </ul> <h2> Example </h2> <p>In the demo scenario:</p> <ul> <li>one control fails because of parameter mismatch</li> <li>another is only partially implemented</li> <li>another fails due to tag mismatch</li> <li>another is completely missing</li> </ul> <p>The validator aggregates this into:</p> <p><code>FAILED control → EXPOSED risk</code></p> <p>So instead of asking:</p> <blockquote> <p>"Is this resource compliant?"</p> </blockquote> <p>you can ask:</p> <blockquote> <p>"Is this architectural risk exposed?"</p> </blockquote> <h2> What this tries to explore </h2> <p>This is not about replacing IaC or policy engines.</p> <p>It’s about introducing an additional layer:</p> <ul> <li>linking architectural intent (risk / control)</li> <li>to implementation (Terraform)</li> <li>and verifying that link continuously</li> </ul> <h2> Open questions </h2> <p>I’m still exploring whether this makes sense outside my own use case.</p> <p>Some questions I’m interested in:</p> <ul> <li>Does this model actually help in real environments?</li> <li>Is “control-level” validation useful, or is it overengineering?</li> <li>How would this scale in large architectures?</li> <li>Where would this break?</li> </ul> <h2> Repo </h2> <p>I’ve put together a small working PoC with:</p> <ul> <li>a simple architecture model (YAML)</li> <li>a validator against Terraform state</li> <li>a demo showing different failure modes</li> </ul> <p>👉 <a href="https://github.com/Illya-Kryushenko/architecture-as-code" rel="noopener noreferrer">https://github.com/Illya-Kryushenko/architecture-as-code</a></p> <p>Happy to hear thoughts, especially from people working with Terraform, Azure, or security architecture.</p> devops terraform architecture cloud