Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Cloud

10/3/2017
03:15 PM
50%
50%

Google Updates Cloud Access Management Policies

Custom roles for Cloud Identity and Access Management will give users full control of 1,287 public permissions in the Google Cloud.

Google today released a beta version of custom roles for Cloud Identity and Access Management (IAM) on the Google Cloud Platform (GCP) that provides more granular control over data access permissions.

IAM has three basic roles for Owner, Editor, and Viewer, and more than 100 service-specific predefined roles that combine curated permissions to perform tasks on the GCP. Predefined roles are often used to control access to GCP services; for example, the Cloud SQL Viewer role combines all the permissions needed to let users browse and export databases.

Custom roles give users precise control over the 1,287 public permissions for GCP services. This tightens data security in the case someone like an auditor needs to access a database and gather data, but doesn't need to read the actual information. Admins can build a "custom role" so auditors have permission to access databases but cannot export their contents.

Google advises building custom roles by starting with a predefined role and adjusting it for the organization's needs. IAM supports custom roles across projects and full organizations to centralize role development, testing, maintenance, and sharing.

Read more details on the new Google offering here.

Join Dark Reading LIVE for two days of practical cyber defense discussions. Learn from the industry’s most knowledgeable IT security experts. Check out the INsecurity agenda here.

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
How to Think Like a Hacker
Dr. Giovanni Vigna, Chief Technology Officer at Lastline,  10/10/2019
7 SMB Security Tips That Will Keep Your Company Safe
Steve Zurier, Contributing Writer,  10/11/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
7 Threats & Disruptive Forces Changing the Face of Cybersecurity
This Dark Reading Tech Digest gives an in-depth look at the biggest emerging threats and disruptive forces that are changing the face of cybersecurity today.
Flash Poll
2019 Online Malware and Threats
2019 Online Malware and Threats
As cyberattacks become more frequent and more sophisticated, enterprise security teams are under unprecedented pressure to respond. Is your organization ready?
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-17666
PUBLISHED: 2019-10-17
rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel through 5.3.6 lacks a certain upper-bound check, leading to a buffer overflow.
CVE-2019-17607
PUBLISHED: 2019-10-16
HongCMS 3.0.0 has XSS via the install/index.php servername parameter.
CVE-2019-17608
PUBLISHED: 2019-10-16
HongCMS 3.0.0 has XSS via the install/index.php dbname parameter.
CVE-2019-17609
PUBLISHED: 2019-10-16
HongCMS 3.0.0 has XSS via the install/index.php dbusername parameter.
CVE-2019-17610
PUBLISHED: 2019-10-16
HongCMS 3.0.0 has XSS via the install/index.php dbpassword parameter.