Because the main risk appears after the workload starts executing. Static checks can reduce known flaws, but they do not reveal live privilege use, data access, or outbound activity. Runtime controls matter when the question is not whether the image looked safe, but whether the running workload is behaving safely in production.
Why This Matters for Security Teams
For containers and serverless functions, the decisive security question is not just whether the image, package, or template passed a scan. It is whether the running workload can be observed, constrained, and stopped when it starts doing something unexpected. Static checks still matter, but they only validate a snapshot. Runtime controls verify actual behaviour after deployment, when secrets are present, network paths are open, and privilege is real.
This is especially important for short-lived workloads because their attack surface appears quickly and disappears quickly. If a function inherits overly broad permissions or a container can reach more services than intended, the abuse window may be small, but the blast radius can still be large. NIST’s NIST Cybersecurity Framework 2.0 is useful here because it emphasises continuous risk management, not one-time approval. NHIMG’s Ultimate Guide to NHIs — Standards similarly frames identity and control as living operational problems, not build-time paperwork.
In practice, many security teams encounter excessive cloud API access only after a workload has already used it, rather than through intentional pre-production review.
How It Works in Practice
Runtime controls focus on what the workload is doing now. For containers, that usually means enforcing process, file, network, and syscall restrictions while the workload is live. For functions, it means controlling invocation context, outbound destinations, secret use, and permission scope at execution time. The goal is to reduce trust in the packaged artifact and increase trust in observable behaviour.
Common runtime layers include admission policy, runtime security agents, cloud-native logging, egress controls, and ephemeral identity. Static scanning can flag known vulnerabilities or misconfigurations, but it cannot tell you whether a workload is suddenly exfiltrating data, chaining calls into a privileged service, or reaching a destination it should never contact. That is why runtime policy needs to be context-aware and, where possible, tied to workload identity rather than just host or image labels.
- Use short-lived credentials and rotate them automatically so a workload cannot keep secrets longer than necessary.
- Constrain outbound traffic to approved destinations and watch for unusual service-to-service paths.
- Log runtime privilege use, not just deployment metadata, so investigation can reconstruct what actually happened.
- Pair image and dependency scanning with live policy enforcement to catch drift after release.
NHIMG’s DeepSeek breach is a useful reminder that exposed secrets and live data stores become operational risks the moment a system is reachable. NIST’s NIST Cybersecurity Framework 2.0 supports this approach by treating protection and detection as ongoing functions, not pre-launch gates.
These controls tend to break down when teams assume serverless and container isolation is enough, because over-permissioned identities and unrestricted egress still allow fast abuse.
Common Variations and Edge Cases
Tighter runtime control often increases operational overhead, requiring organisations to balance stronger containment against deployment speed and troubleshooting complexity. That tradeoff is real, especially in environments with frequent releases, many third-party libraries, or highly dynamic service discovery. Current guidance suggests the most practical model is layered rather than absolute: static checks catch known issues early, while runtime controls enforce what cannot be trusted in production.
There is no universal standard for runtime policy depth across container platforms and function runtimes yet. Some teams can enforce syscall profiles and network segmentation with high confidence; others must rely mainly on cloud logs, identity boundaries, and alerting. The right control set depends on whether the workload handles secrets, calls external APIs, or can reach privileged internal services.
One recurring edge case is “clean” code that still behaves unsafely because the surrounding environment is permissive. Another is CI pipelines that deploy hardened artifacts but attach broad execution roles afterward. NHIMG’s standards guidance is relevant here because NHI identity and privilege must be managed for the running workload, not just the build output.
In practice, teams get the most value when runtime controls are tuned to the specific failure mode they are trying to stop, rather than treating every workload as if it had the same blast radius.
Standards & Framework Alignment
This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.
OWASP Non-Human Identity Top 10 address the attack and risk surface, while NIST CSF 2.0 and NIST AI RMF set the governance and control requirements practitioners need to meet.
| Framework | Control / Reference | Relevance |
|---|---|---|
| NIST CSF 2.0 | PR.AC-4 | Runtime privilege and access enforcement aligns with least-privilege control. |
| OWASP Non-Human Identity Top 10 | NHI-03 | Short-lived workload identity and secret handling are core NHI runtime concerns. |
| NIST AI RMF | Runtime monitoring supports ongoing AI and workload risk governance. |
Limit workload permissions in production and continuously verify actual access paths.
Related resources from NHI Mgmt Group
- How should security teams implement runtime identity controls across hybrid environments?
- What is the difference between code scanning and runtime identity monitoring?
- When does runtime enforcement matter more than static permissions for AI agents?
- Why do signed containers still need runtime policy checks?
