• Email: sales@kaizensg.com
  • Tel: +1 (443) 998-9008
13 Aug 2016

Cloud Access Security Brokers (CASB) Overview

Cloud software adoption is rampant in every enterprise.  From slack to yammer, GDrive to Dropbox, your data is spreading all over the cloud.  How do you get control of it all?  Enter CASB.  Circa 2013, this was a booming market.  And we are no where near the rapid growth.  For many enterprises, security and compliance concerns hamper adoption of cloud applications. Furthermore, cloud applications are accessible from anywhere dragging mobile and BYOD security concerns into the picture. Cloud Access Security Brokers are a category of security tools that help enterprises safely enable cloud apps and mobile devices. CASBs work by intermediating or “proxying” traffic between cloud apps and users. Once proxied, these tools provide:

• Visibility—audit logs, security alerts, compliance reports, etc.

• Data Security—access control, data leakage prevention, encryption, etc.

Together, these functions fill in the gaps otherwise encountered when an enterprise moves from internal, premises-based applications to cloud apps like Salesforce, Google Apps, or Office 365. For enterprises in heavily regulated industries, like Finance and Healthcare, use of a CASB might be the only practical approach to enabling cloud apps. More broadly, any organization with sensitive data to protect would be well served by considering this emerging solution category.

Share this
12 Aug 2016

How To Defend Against A DDoS

In the web security arena, everything changes very fast. The threat landscape rapidly evolves. Zero-day attacks are launched on a daily basis, exploiting newly discovered vulnerabilities for which signature are not available yet. Attackers hide their attack vectors, and scraping bots hide their identities behind CDNs and dynamic IPs, avoiding any simple blacklisting technique trying to block them. In such a rapidly evolving battleground, static cloud security services cannot protect you. Static cloud security services utilize negative security models that identify attacks based on the signatures of attack vectors, and block attackers and bots using IP blacklisting mechanisms. Unfortunately, that can’t help you with zero-day or dynamic IP attacks.

Meanwhile, the assets you need to protect are notoriously changing all the time, continuously introducing new vulnerabilities that may be exploited by attackers. With static cloud security services, you have to tell whenever you launch new applications or introduce changes into existing ones, and manually change your security policies accordingly. This manual process quickly gets out of control as developers that use continuous delivery methods launch release new versions on a daily basis. As a result, your protected assets are introduced with new vulnerabilities that static cloud security services cannot detect and mitigate.

So how do you win a game in which the rules keep changing all the time?

It’s simple. All you need to do is to implement a cloud security service that continuously and automatically adapts to the evolving threat landscape and protected assets. You can’t do that with static cloud security services. To make sure you are continuously protected, you’ll need a cloud security service that implements a positive security model, which means it can tell what your legitimate traffic looks like, and then block anything else. This would get you full protection from zero-day attacks, and from attacks using dynamic IP techniques. In addition, a continuously adaptive cloud security would automatically identify new applications that you launch, analyze their potential vulnerabilities, and tailor them an appropriate security policy.

Radware Cloud Security Services are the first continuously adaptive cloud security service. With positive security models and behavioral analysis technology, they provide automatic protection against zero-day attacks. With IP agnostic fingerprinting technology, attackers and bots are blocked even when they try to hide behind CDNs and dynamic IPs. New applications are automatically discovered, and security policies are automatically created for them. This way, Radware Cloud Security services keep you protected… even while the rules of the games keep changing!

Share this

© 2016 Kaizen Solution Group. All rights reserved.

Click Me