21/12/2015 CLOUD ADOPTION TRENDS. Agenda. Cloud Adoption. Cloud Deployment Model. Public Cloud Usage

Transcription

1 ITRC 在 挑 雲 戰 計 Forum 算 年 代 竭 2015 力 保 護 身 份 和 端 點 的 Understanding the Challenges of Protecting Identities and Endpoints in an increasingly Mobile and Cloud-based world Agenda Cloud Trend 2015 What measures are important before moving? Identities and Endpoint Protection Gateway and Endpoint Protection By Roger Lee, Presentation for the ITRC Forum 2015 on 10 Dec 2015 (Thu) Cloud Adoption CLOUD ADOPTION TRENDS Public Cloud Usage Cloud Deployment Model 1

2 Cloud Services Delivery and Providers Workloads in the Cloud Most Popular Cloud Apps Organization Data in the Cloud Cloud Benefits & Shortcomings CLOUD SECURITY RISKS 2

3 Security Concerns Barriers to Cloud Adoption Security Threats in Public Clouds Personal Storage Concerns Key Factors for Cloud Security CLOUD SECURITY SOLUTIONS 3

4 Security Choices Cloud Confidence Builder Technologies to Protect Data Protecting Perimeter Security Protecting the Workload Key Findings 1. Security is still the biggest perceived barrier to further cloud adoption 2. The dominant cloud security concerns involve unauthorized access and hijacking of accounts 3. The most popular method to close the cloud security gap is the ability to set and enforce consistent cloud security policies 4

5 Protection Direction Security is a BIG concern. So, what measures are important before moving? 1. Cybercriminals attack Endpoint in User network, compromise cloud s data from endpoint Security on Network and Endpoint 2. Cybercriminals break into the Cloud to access private data Security on the Cloud Ultimate Goal of Cybercriminals Attack Components Compromise an endpoint is easier than a Cloud Cybercriminals want to compromise all types of endpointsin order to use them to steal data, take ownership of privileges, control IT resources, or even redirect funds with your identity! The Identity and Access Imperatives Identity is Important Endpoints are under assault because they are the direct avenue to organizational data. Protecting Endpoint and Organization network means Protecting your Identities! 5

6 What are needed? Thus Protecting Endpoint and hence Identities are Important! 1. From Endpoint to Gateway Protection Perimeter-based Protection, make sure your network and endpoint are safe and clean first 2. Workload Protection Protect your data with confidentiality, integrity and availability 3. Security Service on the Cloud Modern Gateway Security Technologies So, How to Protect? Gateway SSL Decryption Ability Deep Packet Inspection Gateway plus Cloud-integrated Anti-malware IPS Enforced Web Filtering Inspection Technologies Differentiation Deep Packet Inspection - SSL Decryption 6

7 Defense-in-Depth Security through Deep Packet Inspection 7 Stages Advanced Threat Model in Actions Target Organisation Targeted Employee Gateway Compromised machine Attacker Compromised Website Web Gateway C&C Server RECON LUREREDIRECT EXPLOIT DROPPER CALL KIT DATA HOME FILETHEFT Breaks the Malware Cycle On-Premise + Cloud: Malware Protection Cloud-based Anti-malware Endpoint Security Technologies Advance Technologies Hosted Anti-Malware Firewall and HIPS Web Filtering Device Control Secure Mobile Access Endpoint Threat Protection Endpoint System management Performance cannot be overlooked Multiple devices and environments Central Management User Awareness 7

8 Endpoint System Management Secure Access Integrate Endpoint Security Enforcement Defend the Endpoints and Gateway Critical Security Controls from SANS Critical Security Controls from SANS CAN I TRUST THE CLOUD NOW WITH MY ENDPOINT AND GATEWAY SECURITY PROTECTION?

9 Thank You! 9