0
0

Delete article

Deleted articles cannot be recovered.

Draft of this article would be also deleted.

Are you sure you want to delete this article?

クラウドセキュリティを調べてみた / I looked into cloud security (日本語 / 英語)

Last updated at Posted at 2024-12-19

image.png

日本語

こんばんわ!
Advent Calendar 2024に参加してまして、19日目の記事を書いていこうと思います。
題材は「ヒヤリとした!クラウドセキュリティ体験談をシェアしよう by Netskope Advent Calendar 2024」ということで、クラウドセキュリティについて学んだことをまとめていこうと思います。

クラウドに潜む脅威

クラウドには以下の脅威が有名なもので考えられます。
・データ漏洩(Data Breach)
・サービス拒否攻撃(DDoS: Distributed Denial of Service)
・認証情報の盗難(Credential Theft)
・インサイダー攻撃(Insider Threats)
・クラウドストレージの不正アクセス(Cloud Storage Misconfigurations)

どうやって防ぐ?

・データ漏洩(Data Breach)

 →暗号化、アクセス制御、多要素認証(MFA)等で対策を行う。

・サービス拒否攻撃(DDoS: Distributed Denial of Service)

 →自動スケーリング、DDoS対策ツール、トラフィックのフィルタリングの対策を行う

・認証情報の盗難(Credential Theft)

 →強力なパスワードポリシー、多要素認証(MFA)、フィッシング対策教育を行う

・インサイダー攻撃(Insider Threats)

 →監視とログ管理、アクセス権の最小化、データ損失防止(DLP)ツールを使用する

・クラウドストレージの不正アクセス(Cloud Storage Misconfigurations)

 →ストレージ設定のレビュー、自動化ツールの活用、データのアクセス制御を行う

ここまで読んでいただきありがとうございます

ENGLISH

Good evening!
I'm participating in Advent Calendar 2024, and I'm going to write an article for the 19th day.
The subject is “Hiyari! Share your cloud security experiences by Netskope Advent Calendar 2024”, so I will summarize what I learned about cloud security.

Threats Lurking in the Cloud

The following are some of the most well-known threats to the cloud.
Data Breach
Distributed Denial of Service (DDoS)
Credential Theft
Insider Threats
Cloud Storage Misconfigurations

Cloud Storage Misconfigurations ### How to Prevent?

・Data Breach

 Data Breach: → Take countermeasures with encryption, access control, multi-factor authentication (MFA), etc.

・Denial of Service (DDoS: Distributed Denial of Service)

 →Countermeasures include automatic scaling, DDoS countermeasure tools, and traffic filtering.

・Credential Theft

 → Strong password policies, multi-factor authentication (MFA), education on anti-phishing measures

・Insider Threats

 →Æ Monitor and manage logs, minimize access rights, use data loss prevention (DLP) tools

・Cloud Storage Misconfigurations

 →Review storage configurations, use automation tools, and control access to data

Thank you for reading this far!

0
0
0

Register as a new user and use Qiita more conveniently

  1. You get articles that match your needs
  2. You can efficiently read back useful information
  3. You can use dark theme
What you can do with signing up
0
0

Delete article

Deleted articles cannot be recovered.

Draft of this article would be also deleted.

Are you sure you want to delete this article?