Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
Google Cloud Debuts New Security Capabilities
Newest First  |  Oldest First  |  Threaded View
sophiapage
50%
50%
sophiapage,
User Rank: Apprentice
8/7/2019 | 1:58:01 AM
Re: Google cloud
Thanks for sharing such useful ideas.
tdsan
100%
0%
tdsan,
User Rank: Ninja
8/1/2019 | 7:18:09 AM
Reviewed GCP setup
 
  • There is a section under GCP at the top of the screen where the user can enter the word "security", on the left it says "Security Command Center". What comes up, it says "to view this page select organization". What I found is it says "Select an Organization", when the org. is selected nothing happens
  • Under "Network Security, there are two policies {Cloud Armor and SSL Policies}, they ask to create policies, which are focused on Web applications where 403 forbidden is initiated
  • Binary Authorization API - mgmt for image deployment
  • Access Context Mgr - "Select an Organization" issue
  • VPC Service Controls - "Select an Organization" issue
  • Cryptographic keys - Allows the user to create key ring
  • Web Security Scanner - created a policy for scanning the existing server and this is what it said:
"One of the starting URLs is mapped to an IP address that is not reserved as static for this project; please check its DNS settings and External IP addresses section

So what I have found is that it is essential to create a project and Organizational group in order for the security aspects to work. Some of the security aspects have a lot of limitations.


Just something to think about.


T


 
Lathaa103
50%
50%
Lathaa103,
User Rank: Apprentice
8/1/2019 | 6:05:17 AM
Google cloud
Hi,

Thanks for the article which speaks on the new capabilities of the Google cloud. Before even planning to migrate the applications on the cloud it is good to go for <a href="https://www.cloudnowtech.com/services/cloud-consulting.html">cloud consulting services</a> providers to have an overall view of the services offered by different cloud providers.


Cybersecurity Industry: It's Time to Stop the Victim Blame Game
Jessica Smith, Senior Vice President, The Crypsis Group,  2/25/2020
Google Adds More Security Features Via Chronicle Division
Robert Lemos, Contributing Writer,  2/25/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
6 Emerging Cyber Threats That Enterprises Face in 2020
This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!
Flash Poll
How Enterprises Are Developing and Maintaining Secure Applications
How Enterprises Are Developing and Maintaining Secure Applications
The concept of application security is well known, but application security testing and remediation processes remain unbalanced. Most organizations are confident in their approach to AppSec, although others seem to have no approach at all. Read this report to find out more.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-9431
PUBLISHED: 2020-02-27
In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the LTE RRC dissector could leak memory. This was addressed in epan/dissectors/packet-lte-rrc.c by adjusting certain append operations.
CVE-2020-9432
PUBLISHED: 2020-02-27
openssl_x509_check_host in lua-openssl 0.7.7-1 mishandles X.509 certificate validation because it uses lua_pushboolean for certain non-boolean return values.
CVE-2020-9433
PUBLISHED: 2020-02-27
openssl_x509_check_email in lua-openssl 0.7.7-1 mishandles X.509 certificate validation because it uses lua_pushboolean for certain non-boolean return values.
CVE-2020-9434
PUBLISHED: 2020-02-27
openssl_x509_check_ip_asc in lua-openssl 0.7.7-1 mishandles X.509 certificate validation because it uses lua_pushboolean for certain non-boolean return values.
CVE-2020-6383
PUBLISHED: 2020-02-27
Type confusion in V8 in Google Chrome prior to 80.0.3987.116 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.