Google has introduced that Google Cloud customers may have entry to 2 new safety features, particularly native integration with the MITRE ATT&CK menace classification and response framework and baked-in safety in opposition to DDoS assaults.
Cloud Armor is Google’s model identify for its DDoS mitigation and internet software firewall service. It replicates most of the strategies utilized in historically structured DDoS safety programs, together with per-client fee limiting, captchas to assist weed out bot requests, and machine studying to counteract Layer 7 assaults. MITRE inclusion permits customers to map Google Cloud’s built-in safety controls onto the MITRE ATT&CK rubric of menace classification and response planning, letting customers automate sure kinds of safety response.
Tuesday’s bulletins quantity to Google catching as much as its opponents by way of the safety of its public cloud, in line with consultants, in addition to appropriating some options of devoted third-party safety merchandise into the corporate’s personal platform. DDoS safety options like those launched this week have been round for a very long time—together with at Google, which has lengthy used it to guard its personal computing assets.
Forrester Analysis principal analyst Lee Sustar mentioned that Tuesday’s additions nonetheless do not totally obviate the necessity for extra safety merchandise for a lot of public cloud customers.
“The query is whether or not the built-in cloud-service supplier safety instruments are adequate or not, and must be augmented,” Sustar mentioned. “Actually, the cloud suppliers’ safety provisions have improved lately, however you continue to typically want so as to add further instruments.”
MITRE is essential to enterprise safety
Each Sustar and Gartner vice chairman and analyst Patrick Hevesi careworn that the MITRE integration is a crucial step ahead for Google Cloud, given its significance to the day by day apply of safety at bigger organizations.
“This is without doubt one of the greatest instruments that helps distributors and safety operations groups map … these indicators of compromise taking place, what’s the assault, and what does my response must be,” Hevesi mentioned. “We see this as a giant pattern, [and] it appears to be like like they’re additionally sharing their analysis and contributing to the [MITRE] framework, which is an effective way for distributors and sec ops groups to share analysis.”
In line with Hevesi, the brand new safety features are unlikely to lure many new clients to Google Cloud on their very own, however they need to show widespread with current customers, together with the training sector and any group that is already utilizing Google Workspace.
“I do not suppose that that is one thing that is going to make somebody transfer,” he mentioned.
Copyright © 2022 IDG Communications, Inc.
