Cyber security company Trend Micro has unveiled Cloud One - File Storage Security, a service that secures files directly in the cloud by scanning them as they're uploaded.
The system, which currently supports Amazon Web Services (AWS), is a serverless offering based on Amazon's Lambda function-as-a-service architecture. This means administrators don't need to run a separate virtual machine to support it. Instead, it triggers only when a user uploads a file.
Trend Micro launches 'industry first' cloud encryption Trend Micro unveils threat-fighting tools for SMBs Trend Micro helps Interpol uncover serial cyber criminal Trend Micro Worry-Free Business Security Services review
Cloud One —-File Storage Security scans files uploaded to S3 buckets, which are the logical systems that Amazon uses to store objects and files. When it sees a new file upload, Cloud One - File Storage Security scans it for known malware signatures, polymorphic variants, and obfuscated malware. The service supports various files, including JPEGs, MP4 media files, PDFs, and compressed ZIP files.
After completing a scan, the service tags the file with the scan results, and admins can then configure actions based on those results, such as sending an email or calling another serverless function. This enables admins to move a file to a different S3 bucket or delete it altogether, allowing for the creation of post-scan plugins for common operations.
Optimal business results with the cloud
Evaluating the best approaches to hybrid cloud adoption
Admins can set up the system using an AWS CloudFormation template, which is a document declaring and configuring collections of AWS services. According to Trend Micro, admins can get up and running quickly with nothing more than the URI for the S3 bucket to scan.
The system only runs on AWS for now, but Trend Micro promises support for Microsoft Azure Blob Storage and Google Cloud Storage soon.
The system will enable development and deployment teams to stand up security services quickly in the cloud, helping them to meet compliance requirements, Trend Micro said. Offering it as a serverless function should enable them to fold it easily into their custom workflows.
Plus, as a cloud-native tool, it should be a useful addition to DevOps workflows and cloud migrations, helping companies to sanitize files as they enter a cloud environment.
This is the latest in a series of Trend Micro Cloud One services that include image scanning for containers, security for serverless functions, network-layer intrusion prevention systems in the cloud, and automated cloud security compliance checks.
