Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.


12:14 PM
Dark Reading
Dark Reading
Products and Releases

CloudLock Introduces Application Firewall For Google Apps

CloudLock Apps Firewall helps enterprises discover, classify and enable trusted third-party mobile and Web apps that require access to users’ Google Apps accounts and data

WALTHAM, Mass. & ORLANDO, Fla.--(BUSINESS WIRE)--CloudLock, the market leader in cloud data security for enterprises, today announced the launch of CloudLock Apps Firewall at Gartner Symposium/ITXPO 2012, the world's most important gathering of CIOs and senior IT executives. CloudLock Apps Firewall helps enterprises discover, classify and enable trusted third party mobile and web apps that require access to users' Google Apps accounts and data.

"Consumer app stores also open up enterprises to new security risks. When users find it difficult to source the applications they need from within the enterprise, they often source those applications from consumer app stores, where they may unwittingly expose corporate data and systems to malware and data theft,[1]"

One of the major benefits of cloud collaboration platforms like Google Apps is end users' ability to easily add applications to enhance their productivity. Many of these applications ask to be granted access to information and capabilities that are core to their function such as documents, email, and contacts. While these permissions may very well be legitimate to ensure the apps' expected behavior, it is important for the corporate IT team to have visibility into what applications domain users are leveraging, to identify tools that could benefit the entire workforce and to ensure that these permissions are not overly intrusive.

"Companies moving to cloud collaboration suites like Google Apps, aren't just moving their data, they're also fundamentally changing how third party apps gain access to that data. The shift to the cloud creates a new, virtual security perimeter that includes apps that read from and write to domain data, as well as the vendors behind them," said Gil Zimmermann, CEO and Co-Founder of CloudLock. "CloudLock Apps Firewall helps enterprises extend their security practices to include apps that have been granted access to their Google Apps domain, discovering all apps and showing the scope of permissions and access available to each. Organizations can now provide users with the convenience of mobile and web apps, and ensure security, governance, and compliance policies are adhered to."

There is no question that employees are using consumer and mobile web apps to get their work done. Companies using Google Apps can now use CloudLock Apps Firewall to balance the productivity gains from these apps with keeping corporate data safe. Companies that mistakenly believe their employees are not already using the cloud, can either keep their heads in the sand and ignore the fact that employees will use unsanctioned apps to do business related tasks, or they can use Google Apps and CloudLock Apps Firewall to embrace employee choice while maintaining control over how apps can access sensitive information.

CloudLock Apps Firewall is designed to allow employees the freedom and flexibility to perform their daily tasks while providing IT with the visibility and control to enforce the Approved Application Policy (AAP). CloudLock Apps Firewall:

Provides effective, ongoing monitoring and discovery of new apps used in the domain

Drives user productivity by promoting trusted, approved applications

Protects the domain from unapproved application access, with enterprise wide visibility and the controls needed to remediate across thousands of users

Educates users on the permissions third-party applications request and which are permissible by the organization

Supports a distributed and mobile workforce, applying consistent security regardless of endpoint device

"We were looking for a way to monitor and control 3rd party apps in Google Drive similar to how we've done so with on-premise data in the past. Our move to Google Apps was a strategic one, and we want to give our employees all the tools they need to do their jobs. CloudLock Apps Firewall gives us exactly what we were looking for," said Steve Simmons, Director of Infrastructure, AMAG Pharmaceuticals.

"After demoing CloudLock Apps Firewall, we are very excited about what it can do for us. We will be able to have visibility into all apps that have access to our Google Apps domain, decide which apps we want to expose, and which apps need to remain hidden for further testing," said Victoria Reyes, Applications Systems Administrator at Teach for America.

The cloud is fundamentally shifting the role of data security within the enterprise. Rather than holding to restrictive on-premise security protocols, savvy organizations understand the need to promote secure collaboration within fast-moving cloud platforms like Google Apps to ensure that confidential data is safe from unauthorized access or unintentional leakage. CloudLock is dedicated to providing enterprises with the solutions they need to enforce their AAP to locate applications that will benefit their employees while removing those that could potentially put data at risk.

"Consumer app stores create a number of challenges for IT leaders looking to support the application needs of an enterprise. They raise the bar for IT organizations by providing simpler ways to find, purchase, install and upgrade a wide variety of applications. When employees come to work, they bring their app store experience and expectations with them, and begin to expect a similar experience with their enterprise applications," said Ian Finley, Research VP, Gartner Research.

"Consumer app stores also open up enterprises to new security risks. When users find it difficult to source the applications they need from within the enterprise, they often source those applications from consumer app stores, where they may unwittingly expose corporate data and systems to malware and data theft,[1]" added Finley.

CloudLock Apps Firewall is available today. Contact [email protected] or visit http://www.cloudlock.com/apps-firewall to sign up for a free trial.

About CloudLock

CloudLock helps enterprises extend their data security practices and data loss prevention (DLP) to the cloud. CloudLock's suite of security applications give businesses the controls and visibility they need to take advantage of the collaboration benefits of public cloud offerings, without sacrificing on security. The largest Google Apps customers in the world trust CloudLock to secure their data. For more information about the company or reseller opportunities call (781) 996-4332 or visit http://www.cloudlock.com.

Comment  | 
Print  | 
More Insights
Oldest First  |  Newest First  |  Threaded View
Former CISA Director Chris Krebs Discusses Risk Management & Threat Intel
Kelly Sheridan, Staff Editor, Dark Reading,  2/23/2021
Security + Fraud Protection: Your One-Two Punch Against Cyberattacks
Joshua Goldfarb, Director of Product Management at F5,  2/23/2021
Cybercrime Groups More Prolific, Focus on Healthcare in 2020
Robert Lemos, Contributing Writer,  2/22/2021
Register for Dark Reading Newsletters
White Papers
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
Building the SOC of the Future
Building the SOC of the Future
Digital transformation, cloud-focused attacks, and a worldwide pandemic. The past year has changed the way business works and the way security teams operate. There is no going back.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
PUBLISHED: 2021-02-27
SerComm AG Combo VD625 AGSOT_2.1.0 devices allow CRLF injection (for HTTP header injection) in the download function via the Content-Disposition header.
PUBLISHED: 2021-02-27
An issue was discovered in through SaltStack Salt before 3002.5. salt.modules.cmdmod can log credentials to the info or error log level.
PUBLISHED: 2021-02-27
In SaltStack Salt before 3002.5, eauth tokens can be used once after expiration. (They might be used to run command against the salt master or minions.)
PUBLISHED: 2021-02-27
An issue was discovered in SaltStack Salt before 3002.5. Sending crafted web requests to the Salt API can result in salt.utils.thin.gen_thin() command injection because of different handling of single versus double quotes. This is related to salt/utils/thin.py.
PUBLISHED: 2021-02-27
i-doit before 1.16.0 is affected by Stored Cross-Site Scripting (XSS) issues that could allow remote authenticated attackers to inject arbitrary web script or HTML via C__MONITORING__CONFIG__TITLE, SM2__C__MONITORING__CONFIG__TITLE, C__MONITORING__CONFIG__PATH, SM2__C__MONITORING__CONFIG__PATH, C__M...