Cyber Defense eMagazine October Edition for 2021

More documents

Recommendations

Info

Our industry has developed standard requirements of physical security, software security, access control, etc., that tend to be rolled up into a series of compliance schemes. These compliance programs absolutely apply in the era of edge computing and edge data centers. The edge tends to conjure up the image of an outdated server living in a remote office (perhaps shoved in a corner under a dusty desk). This is no longer true. Rather, massive deployments of hardware enabling real-time, low-latency experiences (regardless of geographic region) are becoming increasingly normal and, I would assert, will become more prevalent in the future. Your current compliance knowledge and your current expertise remains relevant. There are new concepts to learn, of course, and new considerations as data proliferates across the edge in global footprints. But the basis remains the same. It’s extremely important that the tools adopted in edge deployments support your desire to stay compliant with data regulations. When choosing a vendor, ensure that you have the required controls to define what data and events are cached, stored, and processed. And, given a global deployment, you are able to define this on a perregion basis. When the internal compliance requirements are met, and appropriate certifications are obtained, edge deployments enable a variety of new and exciting capabilities not yet feasible. With the basics achieved, what becomes even more interesting is what edge deployment paradigms mean for the security and compliance workflow offered by companies. First, it’s important to understand that these edge deployments are done to extend capabilities while also providing a fast round-trip response time. Today, it’s absolutely possible to achieve a P90 round trip latency of less than 50ms globally. This speed, when coupled with data controls, powers exciting new capabilities. Consider, for example, real-time event correlation. In a globally-deployed environment, you’re able to offer workflows that can detect complex event patterns and isolate threats across multiple nodes in real time. In an industry like financial services, the ability to offer both real-time decisioning and real-time compliance are dependent on strict event correlation. You can also imagine this being broadly applicable to FINRA compliance that requires mandatory reporting of communications and over-the-counter transactions. As another example, think about real-time threat & anomaly detection . At first glance, it may seem to be a subset of the above, but the ability to perform real-time detection of complex event patterns and threat isolation enables security alerting in a powerful new fashion. Data manipulation functions are used to spot early trends or patterns in data and prevent or quickly respond to business opportunities and threats. Cyber Defense eMagazine – October 2021 Edition 68 Copyright © 2021, Cyber Defense Magazine. All rights reserved worldwide.
Or, let’s spend some time discussing the need for access control. Perhaps you have some familiarity with ABAC (attribute-based access control) or RBAC (role-based access control). Edge deployments, with real-time filtering, enable an entirely new category of “locationbased access control”. Basically, you can think of all the existing power of RBAC/ABAC coupled with the location-based identifiers of where the user, application, etc. is connecting. For companies maintaining some set of personally identifiable information (PII), you could define granular policies on workflow restrictions when certain parts of a schema are accessed. In essence, using physical location (latitude, longitude, even altitude) to build complex rules that enrich, enhance, present, and analyze data. This allows you to control and delegate analytics on sensitive/encrypted data to the edge compute and then serve the result set only when fully complete. The workflow customizations are nearly endless. And the ideation is exciting. In fact, the workflows mentioned above are based on conversations that I have daily. So then, is the edge really secure? As secure as your deployments today. Or, perhaps, it is not inherently insecure. It could even be more secure as you optimize your infrastructure globally. Importantly, edge deployments (when combined with stateful services, intelligent filtering, and finegrained data control) can be deployed extremely securely. And, you can enable workflows that enhance compliance and offer unique, secure capabilities for your users and customers. The era of edge deployments is here… and it is here to stay. Start planning your compliance wisely and make sure to dream about the new, exciting workflows you can now enable. About the Author Chetan Venkatesh, CEO and Co-Founder of Macrometa – a silicon valley based edge computing startup. Chetan Venkatesh is a technology startup veteran & executive focused on enterprise data center, cloud infrastructure and software products/companies. He has 20 years of experience in building primary data storage, databases and data replication products. Chetan holds a dozen patents in the area of distributed computing and data storage. Chetan can be reached online at https://twitter.com/Macrometa and at our company website https://www.macrometa.com/ Cyber Defense eMagazine – October 2021 Edition 69 Copyright © 2021, Cyber Defense Magazine. All rights reserved worldwide.
Page 1 and 2:
The Top 6 Cyber Attacks Of 2021 So
Page 3 and 4:
Protecting SMBs from Current Cybers
Page 5 and 6:
@CYBERDEFENSEMAG CYBER DEFENSE eMAG
Page 7 and 8:
Cyber Defense eMagazine - October 2
Page 9 and 10:
Page 11 and 12:
Page 13 and 14:
Page 15 and 16:
Page 17 and 18: Cyber Defense eMagazine - October 2
Page 35 and 36: #2 Florida’s water system A hacke
Page 37 and 38: Raise Cyber Security Awareness: Whe
Page 39 and 40: Source Code Protection Market Do we
Page 41 and 42: of script administration, no backup
Page 43 and 44: to steal “the keys to the kingdom
Page 45 and 46: Part 1 - Using a Proxy Server - BUR
Page 47 and 48: Below we have an example of interce
Page 49 and 50: Having the device UUID and being co
Page 51 and 52: In the second part, we demonstrate
Page 53 and 54: Currently, we are bound to use tech
Page 55 and 56: You can be a hacker too! Remember,
Page 57 and 58: The Brutal Reality of Brute Force A
Page 59 and 60: Multi-factor authentication is one
Page 61 and 62: Why outdated software poses cyberse
Page 63 and 64: About the Author Roman Davydov is a
Page 65 and 66: What data security risks do communi
Page 67: Is the Edge Really Secure? By Cheta
Page 71 and 72: accessible. Different agencies have
Page 73 and 74: Making Sure the Lights Don’t Go O
Page 75 and 76: Gösgen’s IT Security Officer, Fr
Page 77 and 78: MFA works a few different ways, but
Page 79 and 80: Get Ahead of the Game: Packet Captu
Page 81 and 82: investigations and the ability to t
Page 83 and 84: Thousands of Fortinet VPN Account C
Page 85 and 86: and operating costs. FIDO2 is the s
Page 87 and 88: As ports have been steadily ramping
Page 89 and 90: About the Author Working at the int
Page 91 and 92: Today’s Threat Landscape The 2021
Page 93 and 94: Thwarting Today’s Phishing Attack
Page 95 and 96: Security is Everyone’s Job Employ
Page 97 and 98: CapitalOne data breach occurred as
Page 99 and 100: About eSentire eSentire Inc., is th
Page 101 and 102: Complying with regulations Security
Page 103: Cyber Defense eMagazine - October 2
Page 115 and 116: Free Monthly Cyber Defense eMagazin
show all

Cyber Defense eMagazine October Edition for 2021

Create successful ePaper yourself

Delete template?

Save as template?