A. An application architecture that decomposes a monolithic application into many small, independently deployable services that communicate via APIs β providing blast radius isolation but requiring authenticated, authorized API calls between all services
B. The practice of defining cloud infrastructure in version-controlled text files executed by an automation engine β providing consistent, reviewed deployments and preventing configuration drift by treating code as the source of truth
C. A cloud execution model where the provider manages all infrastructure including OS, runtime, and scaling, while the customer is responsible for function code security, IAM permissions (least privilege), and input validation of all event trigger payloads
D. The framework that divides security responsibilities between the cloud provider and the customer based on service model β with data governance and access management remaining the customer's responsibility regardless of whether the deployment is IaaS, PaaS, or SaaS