SearchCloudSecurity
New & Notable
Problem Solve
What to do about malicious IPs hidden in the cloud
Cybercriminals have found a way to use the cloud to mask their locations. Expert Rob Shapland looks at the options organizations have to deal with malicious IP addresses.
Evaluate
A look at the security of cloud databases
Unsecured Google Firebase databases are similar to misconfigured AWS S3 buckets, but there are key differences. Expert Rob Shapland discusses the risks of unsecured cloud databases.
Manage
How to eliminate public access to AWS S3 buckets
AWS S3 buckets leaked millions of files, including sensitive data, by enabling public access. Learn how to block public access with expert David Shackleford.
Manage
How a cloud-based honeypot bolsters security
A cloud honeypot can help enterprises gather threat intelligence. Expert Frank Siemons explains why a cloud-based honeypot deployment is preferable to a traditional one.
Trending Topics
-
Private and Hybrid Clouds Get Started
An introduction to infrastructure as code for security
Infrastructure as code bolsters security and ensures security best practices are built into software development. Learn more about the use of infrastructure-as-code models.
-
Public Clouds Get Started
Three issues with cloud security and how to fix them
Enterprises can face an array of issues when they migrate to the cloud. Learn about three of the main challenges and how to effectively create a cloud security strategy.
-
Data Protection Problem Solve
Container security: Plan for segmentation failure
As container security vulnerabilities continue to emerge, companies should plan ahead and have strategies ready to defend against looming segmentation failures.
-
Standards Evaluate
A look at Google's confidential computing framework
The Google Asylo framework is an open source alternative for confidential computing. Expert Rob Shapland explains how it works and how it's different from other offerings.
-
Virtualization Evaluate
Possible disposable sandboxes rival virtualization
Microsoft's secretive, potential new feature InPrivate Desktop could give security teams access to disposable sandboxes. Expert Ed Moyle explains how the feature could work.
-
IAM Evaluate
A look at anonymity in the cloud with browsers
Cloud browsers can provide a level of security for users seeking anonymity in the cloud. Expert Frank Siemons of the Infosec Institute explains the benefits of cloud browsers.
Topics Covered
-
Cloud Computing Compliance, Audit and Data Governance (6) +
Cloud Computing Virtualization: Secure Multitenancy - Hypervisor Protection
-
Cloud Security Management and Cloud Operations Security (6) +
- Cloud Data Storage, Encryption and Data Protection Best Practices
- Cloud Network Security Trends and Tactics
- Cloud Patch Management and Cloud Configuration Management
- Cloud Provisioning and Cloud Identity Management Issues
- Cloud Security Services: Cloud-Based Vulnerability Scanning and Antivirus
- Legacy Application Modernization for the Cloud
-
Security in the Cloud: Cloud Computing Architecture (5) +
Have a question for an expert?
Please add a title for your question
Get answers from your peers on your most technical Cloud Security challenges.
Meet all of our Cloud Security experts
View all Cloud Security questions and answers
Find Solutions For Your Project
-
Evaluate
The security risks of cloud-based email
Cloud-based email security can be challenging for enterprises to achieve. Learn what makes it a challenge and how to secure email in the cloud from expert Dave Shackleford.
-
A look at the security of cloud databases
-
What are the security risks of proxying in the cloud?
-
Strengthen cloud network security with these practices
-
-
Problem Solve
Don't let shadow IT darken your enterprise
More technologies than ever are available to people now that the cloud is so pervasive, and, as a result, shadow IT has become a problem. Expert Michael Cobb explains what to do.
-
Container security: Plan for segmentation failure
-
What to do about malicious IPs hidden in the cloud
-
Monitoring and detecting cloud API vulnerabilities
-
-
Manage
Deep packet inspection in the cloud
Despite privacy concerns about deep packet inspection, it can help improve cloud network security for enterprises. Expert Frank Siemons explains how to avoid potential pitfalls.
-
How to eliminate public access to AWS S3 buckets
-
How a cloud-based honeypot bolsters security
-
How to use Trailblazer to prevent AWS security threats
-
Cloud Security Basics
-
Get Started
An introduction to infrastructure as code for security
Infrastructure as code bolsters security and ensures security best practices are built into software development. Learn more about the use of infrastructure-as-code models.
-
Get Started
What zero-trust security means for the cloud
A zero-trust security strategy means something completely different in cloud environments than it does on premises. Learn how to achieve true zero-trust in the cloud.
-
Get Started
The security pros and cons of Cloudflare Workers
Cloudflare Workers is new for serverless cloud computing and introduces benefits and drawbacks for security professionals. Expert Ed Moyle discusses the security side of serverless.
Vendor Resources
Multimedia
-
News
View All -
Cloud Patch Management and Cloud Configuration Management
First big Kubernetes security vulnerability discovered
News roundup: A critical Kubernetes vulnerability was found in the system's API server and could have a wide reach. Plus, ESET found 21 new Linux malware families, and more.
-
Cloud Computing Compliance, Audit and Data Governance
Palo Alto bolsters cloud with security startup RedLock
Palo Alto Networks looks to bolster its cloud security portfolio with a $173 million acquisition of cloud security startup RedLock and integrate it with Evident.io technologies.
-
Cloud Provisioning and Cloud Identity Management Issues
Netflix shares new approach for monitoring credentials in AWS
At Black Hat 2018, a Netflix security engineer introduced a new open source tool designed to more effectively monitor AWS credentials in large cloud environments, like Netflix's.
SearchCloudSecurity Definitions
- software-defined perimeter (SDP)
- hypervisor security
- clickwrap agreement (clickthrough agreement)
- SSAE 16
- CAIQ (Consensus Assessments Initiative Questionnaire)
- virtual firewall
- Cloud Security Alliance (CSA)
- Google Cloud Key Management Service (KMS)