CASB or Cloud Access Security Broker

Owned by Jean-luc KRIKER
Last updated: Jan 10, 2022
1 min read

Juniper Partner:   Netskope and  ciphercloud:   https://security.lookout.com/

Netskope CASB or cloud access security broker



Aperture™ SaaS security service


https://www.youtube.com/watch?v=qhAC--N6b8w&ab_channel=CloudLock

  • CASB is a control point between endpoint and the cloud
  • 3 ways to deploy CASB: a proxy on premise, Agent in the host or API cloud centric/SaaS

4 Pillars: what CASB brings:

  • Visibility: which application has been use, when by who?
  • Compliance: like GDPR, PCI and HIPAA compliant
  • Threat prevention: User control:   authorized/staff and unauthorized/outsiders to resource inside or outside of organization
  • Data Security : Encryption , tokenization, data loss


https://www.gartner.com/en/information-technology/glossary/cloud-access-security-brokers-casbs

Cloud access security brokers (CASBs) are on-premises, or cloud-based security policy enforcement points, placed between cloud service consumers and

cloud service providers to combine and interject enterprise security policies as the cloud-based resources are accessed.

CASBs consolidate multiple types of security policy enforcement.

Example security policies include:

 authentication, single sign-on, authorization, credential mapping, device profiling, encryption, tokenization, logging, alerting, malware detection/prevention and so on.