CSPM- Cloud Security Posture Management (Comprehensive Security for Cloud Environment)
DOI:
https://doi.org/10.32628/CSEIT206268Keywords:
CSPM- Cloud Security posture management, CASB- Cloud Access Security Broker, CWPP- Cloud Workload Protection Platform, API- Application Programming Interface, IaaS- Infrastructure as A Service, PaaS- Platform as A Service, CSP- Cloud Service Provider.Abstract
As enterprises place more services in public cloud and as the public cloud providers introduce more infrastructure and platform services directly into the hands of developers, it is becoming increasingly complex and time-consuming to answer the seemingly straightforward question “Are we using these services securely?” and “Does the configuration of my cloud services represent excessive risk?” For example, manually assessing the secure setup and configuration in cloud environments across different services, each with varying granularities of authorization policies, is extremely difficult, if not impossible. Simple misconfiguration issues (such as open storage buckets) represent significant risk (see “Open File Shares Are Your Biggest Cloud Security Problem”) and occur often, as evidenced by continuing publicized data disclosures from publicly exposed storage buckets.
References
- https://www.fugue.co/cloud-security-posture-management#whyiscspmimportant
- https://pages.awscloud.com/rs/112-TZM-766/images/Whitepaper_AWS-CSPM-Jumpstart.pdf
- https://emtemp.gcom.cloud/ngw/eventassets/en/conferences/sec25/documents/gartner-security-risk-management-summit-us-innovation-insight-2019.pdf
Downloads
Published
Issue
Section
License
Copyright (c) IJSRCSEIT
This work is licensed under a Creative Commons Attribution 4.0 International License.