Security and the cloud. It’s a topic that we all spend a fair share of energy and time discussing – how to secure applications and successfully thwart attackers, how to protect sensitive healthcare, financial and personal data. And if you ask any organization worth its IT salt, you’ll probably hear a lively discussion on their security practices, from pen testing to malware detection to staff training to breach detection systems.
But as we’ve discussed lately, many providers are still using yesterday’s security measures to try to protect their customers. Today we’re going to focus on a unique methodology that could revolutionize the industry and reduce attacks by an impressive amount – an innovative capability Armor created and one we hope other providers will adopt.
Strength in numbers. That’s the principle here, and it means exactly what you think it does. As part of our multilayered security, we’ve developed a secure cloud orchestration layer that can coordinate security profiles and real-time activity, then share it through the cloud to benefit all customers with stronger protection. Here’s how it works.
Let’s say you and I are both customers of a cloud provider. You get hacked; I don’t. The provider fixes your particular issue and in doing so, learns more about the attack. For instance, the provider identifies the attack vector, finds out that it was a Cross-site Request Forgery (CSRF) or SQL-Injection, and implements the right controls to protect you. But instead of applying that attack information to the infrastructure we share, that’s where they stop.
Problem solved? Not at all. As you know, cybercrime is like the flu. One person gets targeted and we’re all hit within a week. Hackers don’t stop with one victim, so I get hacked just a week after you – and the provider has to step in again.
Everyone’s experienced this dynamic, which begs the question – why don’t providers incorporate the attack profiles into their knowledge base to protect the rest of their customers? Why behave as if the hackers will never return, when we all know they will?
It’s an obvious question, without an obvious answer. While organizing and disseminating attack intelligence sounds like common sense, most cloud providers simply don’t take this step.
At Armor we think of a bigger, holistic picture. A rising tide lifts all boats – and stronger security policies which are built to protect all customers. That’s why we created a secure orchestration layer that enables systems to talk to each other and share information on threats and attack vectors. If a customer gets hit, within microseconds the orchestration layer uses that information to keep everyone protected. Consider it Tamiflu – by blocking the bug, we’ve now stopped countless organizations from getting infected.
This is intelligent security. This is taking one piece of knowledge, one attack, and turning it into a preemptive springboard to protect everyone else. We’ve talked a lot about what the cloud provider of the future will look like and this is a perfect example. The days of patching up customers on a case-by-case basis are over. Advanced cloud protection isn’t tackling problems after they happen, as many providers do today. It’s anticipating the future and proactively creating a stronger security world for everyone.