Trend Cloud Security Blog – Cloud Computing Experts

Currently Browsing: Smart Protection Network

Savings with Cloud Security — A Look at the Numbers

Posted by Christine Drake in Cloud, Cloud-based Security, SaaS, Security, Smart Protection Network, Threats Jan 19th, 2012 | 7 Comments
When people talk about cloud security it can mean either 1) security for the cloud—security that protects your cloud initiatives, like protection for virtual machines or data stored in the cloud; or 2) security from the cloud such as Security as a Service that uses the cloud to deliver some aspect of protection, like hosted email or web security.  Here, I’d like to focus on security from the cloud that’s delivered in a hybrid model—a cloud-client architecture.  Using the cloud for security can deliver faster threat protection and better security.  Traditional security has relied on signature... read more

Beyond Perimeter Defense to Data-Centric Security

Posted by Christine Drake in Cloud, Cloud-based Security, Consumerization of IT, Secure Data Centers, Securing the Cloud, Security, Smart Protection Network, Threats, Threats from the Cloud, VMware Oct 7th, 2011 | 1 Comment
Traditionally businesses have focused their IT security on perimeter defense—blocking threats before they enter the network. This protection is still important.  But with today’s cloud computing, mobile devices, and advanced persistent threats (APTs), businesses need security that protects their data wherever it travels and in whatever type of device it resides, requiring new data-centric security.  Earlier this week, Trend Micro held its annual insight event for the analyst community and announced our new vision on data-centric security (see video clips of the event here and here).  Back... read more

The State of Cloud and Virtualization Security

Posted by Dave Asprey in Cloud, Cloud-based Security, Cyber crime, Deep Security, hybrid-cloud, IaaS, Malware, Privacy, Compliance and Identity, private cloud, public cloud, Secure Data Centers, Securing the Cloud, Security, Smart Protection Network, Threats from the Cloud, Virtualization Jun 5th, 2011 | 1 Comment
For the last few months, we’ve been conducting a cloud, virtualization, and VDI security survey of 1200 IT professionals from larger companies in 6 countries around the world. Not only did I get to help shape the questions on the survey, I’ve also been on the team interpreting the results. We’ve learned more than a few things we actually were not expecting to learn. Here is a collection of the most interesting top findings about the state of cloud and virtualization security. I’ll be blogging about some of them in more detail over the next few weeks, but in the meantime, here is the big... read more

Ambient Cloud News: Skype protocol has been reverse engineered

Posted by Dave Asprey in Cloud, Cloud-based Security, Cyber crime, DataCenter, Deep Security, hybrid-cloud, IaaS, private cloud, public cloud, SaaS, Secure Data Centers, Securing the Cloud, Security, Smart Protection Network, Threats from the Cloud Jun 2nd, 2011 | Comments Off
This is pretty cool. I gave a talk last week at the Glue Conference in Denver about how ambient clouds ( http://cloud.trendmicro.com/good-clouds-evil-clouds-why-microsoft-has… )work and even used Skype as an example of a massive-scale ambient cloud. This case raises some very important new questions around ambient clouds. For instance, if you create an ambient cloud, one that you control using your own protocol, but where you have no control over when an endpoint may join it, what are the legal implications if someone else uses your protocol? In an open source world, slapping a lawsuit on... read more

Chrome OS: So secure we don’t need security?

Posted by Rik Ferguson in Cloud, Cloud-based Security, Cyber crime, Malware, Securing the Cloud, Security, Smart Protection Network, Threats, Threats from the Cloud May 31st, 2011 | 2 Comments
With the launch announcements of various Google Chrome netbooks, the focus of the press and security companies alike is beginning to take a closer look at the security promises made and also at some of the more ’media friendly‘ statements such as, “…users don’t have to deal with viruses, malware and security updates”.   Let’s have a look at some of the security features of Chrome OS:   1 – Get out of my playpen. Each process runs in its own sandbox.  Effectively this means that if an application is malicious or compromised, it is unable to interact with or otherwise affect... read more

Open Source Clouds Become Enterprise-Grade: Citrix and OpenStack

Posted by Dave Asprey in Citrix, Cloud, Cloud-based Security, cloudbursting, Deep Security, hybrid-cloud, IaaS, PaaS, private cloud, public cloud, SaaS, Securing the Cloud, Security, Smart Protection Network, Virtualization, VMware May 25th, 2011 | Comments Off
Today at Synergy, Citrix announced “Project Olympus,” effectively making open source clouds a more viable option for enterprises. In the past, it was cloud providers like Rackspace who tended to focus on open source cloud infrastructure, while enterprises tended to make more conservative choices where support contracts were available. The new support from Citrix, along with about 60 other supporting commercial hardware and software vendors, should go a long way towards helping enterprises see OpenStack as an enterprise-grade choice of cloud infrastructure. Enterprises can now get a Citrix-certified... read more

IPv6 is here. How does this affect email?

Posted by Dave Rand in Cloud, Cloud-based Security, Cyber crime, IPv6, Malware, Privacy, Compliance and Identity, public cloud, SaaS, Securing the Cloud, Security, Smart Protection Network May 4th, 2011 | 1 Comment
Part 1 of 2 parts IPv6 will change how we use the internet, again. To the typical user, there is no difference; web sites work the same. But email is a different story. When using IPv6, addresses are allocated in a different manner. Most end-users today get one IP address, which is shared between multiple machines using a Network Address Translation (NAT) router. In IPv6, each user gets an address block – a /64 – of address space. This is great news, because end-to-end application on the Internet will work much better, and there will be no NAT in the way. A /64 is a huge amount of space –... read more

The Small Business Journey to the Cloud is Actually a Round Trip

Posted by Greg Boyle in Cloud, Cloud-based Security, DataCenter, hybrid-cloud, IaaS, PaaS, Privacy, Compliance and Identity, private cloud, public cloud, SaaS, Secure Data Centers, Securing the Cloud, Security, Smart Protection Network, Threats, Threats from the Cloud, Virtualization Apr 20th, 2011 | 2 Comments
The Small Business Journey to the Cloud is Actually a Round Trip      By Greg Boyle, Trend Micro Global Product Marketing Manager Many small businesses are still uncertain about cloud computing. They wonder if it can help with their profitability without being extremely risky. Let’s start by defining cloud computing in small business terms. There are two commonly agreed upon types of cloud computing: 1) software-as-a-service and 2) infrastructure-as-a-service. Software-as-a-service (SaaS) is cloud computing where the software you would normally install on your computers in the office is instead... read more

New type of cloud emerges: Exploits as a Service (EaaS)

Posted by Dave Asprey in Cloud, Cloud-based Security, Cyber crime, IaaS, PaaS, public cloud, SaaS, Securing the Cloud, Security, Smart Protection Network, Threats, Threats from the Cloud, Virtualization Apr 7th, 2011 | 1 Comment
For years now, if you knew where to shop on the shady side of the Internet cloud, you could pick up a botnet for cheap. But it was so much work to log in to IRC and pay with egold that a busy cybercriminal just couldn’t be bothered. That’s not a problem anymore, thanks to Robopak. Applying the latest cloud provisioning and marketing analytics technologies, they’ve created an entirely new type of cloud service, Exploits as a Service, or EaaS. Robopak’s EaaS lets you pay as little as $30 per day to access Java, PDF, and IE exploits and roll them out to build your cybercrime... read more

Dedicated Servers vs. the New Amazon EC2 Dedicated Instance

Posted by Dave Asprey in Cloud, Cloud-based Security, cloudbursting, DataCenter, hybrid-cloud, IaaS, private cloud, public cloud, Secure Data Centers, Securing the Cloud, Security, Smart Protection Network, Virtualization Mar 28th, 2011 | 4 Comments
Amazon Web Services today announced the availability of dedicated compute instances within a VPC: Dedicated Instances are Amazon EC2 instances launched within your Amazon Virtual Private Cloud (Amazon VPC) that run hardware dedicated to a single customer. Dedicated Instances let you take full advantage of the benefits of Amazon VPC and the AWS cloud – on-demand elastic provisioning, pay only for what you use, and a private, isolated virtual network, all while ensuring that your Amazon EC2 compute instances will be isolated at the hardware level. Of course, the humor here is that Amazon didn’t... read more

« Previous Entries