Vault is a cloud-native, cloud-agnostic product. This means it was designed and built to use key cloud functionality in any supported cloud environment.
Principles
The following principles apply to Vault’s cloud infrastructure:
Cloud native: Vault is designed to be deployed to cloud environments through a Highly Available distributed microservices architecture. Vault takes advantage of the unique benefits of cloud, including dynamic scalability, automation and managed services.
Cloud agnostic: Vault can be deployed to all major cloud service providers. To retain optionality and mitigate the risk of vendor lock-in, Vault is not coupled to a single cloud-specific technology. Where managed services are used, we seek parity across cloud providers.
Robust and self-healing: The Vault infrastructure is designed for redundancy, no single points of failure and the ability to self-heal at a component level.
Infrastructure-as-code (IaC): All infrastructure is written as code through Terraform. This maintains consistency across multiple cloud service providers. IaC enables us to execute best practices around automated testing, code review and reproducibility.