What is CASB Solution?
--> Network Security and Cyber Security Teams have all sorts of security tools to track and prevent sensitive data exfiltration within the organization or enterprise network.
--> Most of the on-premises network security tools, such as firewalls, IPS, and proxy servers, have no control or visibility over cloud applications such as Microsoft Teams/Dropbox/OneDrive, or SharePoint.
--> They cannot enforce an organization's security policies in the cloud.
--> CASB stands for Cloud Access Security Broker.
--> Cloud Access Security Broker (CASB) is a technology solution that enforces an organization's security policies in the cloud.
--> CASB prevents security breaches that usually happen in cloud based applications.
--> CASB acts as policy enforcement between end-users and cloud applications.
--> Cloud Access Security Broker (CASB) solution prevents an employee from using unapproved cloud solutions as well as changing the security settings of approved cloud solutions.
--> A simple example to understand how the Cloud Access Security Broker (CASB) solution enforces an organization's security policies in the cloud is preventing an employee from sharing sensitive data from approved cloud solutions such as Dropbox or OneDrive to their personal email or uploading sensitive data to unapproved cloud solutions such as Box or Google Drive public storage locations.
--> CASB can apply different security rules based on the user context/location from which he is trying to access the cloud application.
--> CASB solutions can be deployed for an enterprise in two ways:
i) CASB On-Premises Appliance (the Security Team has to make sure all the cloud application traffic from the Enterprise must be forwarded to the CASB solution before going to the Internet)
ii) CASB Cloud Appliance ( CASB Cloud Appliance uses API to integrate with enterprise approved cloud solutions to have visibility/monitoring into it)
--> CASB solution provides security features such as Access control, Firewalling, Authentication, Encryption, Threat Protection, Monitoring, Content filtering, and Data Loss Prevention for cloud based applications.
Following are the use cases for implementing CASB in an organization:
i) CASB provides visibility into the usage of cloud applications (detecting monitoring and misuse of Cloud Applications).
ii) CASB offers Data Loss Prevention (DLP) Capabilities ( detect and prevent data leakage in Cloud Applications).
iii) CASB also provides encryption capabilities ( CASB can intercept the traffic before reaching the cloud applications).
0 comments:
Post a Comment