CASB
Definition
A Cloud Access Security Broker (CASB) is a security policy enforcement point positioned between cloud service consumers and providers to enforce enterprise security policies as cloud-based resources are accessed. CASBs provide visibility into cloud application usage, data security, threat protection, and compliance by monitoring and controlling data transfers and user activities across cloud services. They can be deployed on-premises or in the cloud and often integrate with existing security infrastructure to extend security policies to cloud environments.
Secure Settings Example
# Example CASB policy configuration for data loss prevention
data_loss_prevention:
enabled: true
policies:
- name: "PII Protection"
actions:
- block
conditions:
- type: "content_inspection"
pattern: "SSN"
- name: "Confidential Data Monitoring"
actions:
- alert
conditions:
- type: "file_type"
pattern: "confidential"
Insecure Settings Example
# Example of insecure CASB configuration with insufficient data protection
data_loss_prevention:
enabled: false
policies:
- name: "Basic Monitoring"
actions:
- alert
conditions:
- type: "file_type"
pattern: "public"