Trend Micro aims to seamlessly secure file storage in the cloud

An employee on the phone while his computer screen shows "cyber attack" warning
(Image credit: Shutterstock)

Cyber security company Trend Micro has unveiled Cloud One - File Storage Security, a service that secures files directly in the cloud by scanning them as they're uploaded.

The system, which currently supports Amazon Web Services (AWS), is a serverless offering based on Amazon's Lambda function-as-a-service architecture. This means administrators don't need to run a separate virtual machine to support it. Instead, it triggers only when a user uploads a file.

Cloud One —-File Storage Security scans files uploaded to S3 buckets, which are the logical systems that Amazon uses to store objects and files. When it sees a new file upload, Cloud One - File Storage Security scans it for known malware signatures, polymorphic variants, and obfuscated malware. The service supports various files, including JPEGs, MP4 media files, PDFs, and compressed ZIP files.

After completing a scan, the service tags the file with the scan results, and admins can then configure actions based on those results, such as sending an email or calling another serverless function. This enables admins to move a file to a different S3 bucket or delete it altogether, allowing for the creation of post-scan plugins for common operations.


Optimal business results with the cloud

Evaluating the best approaches to hybrid cloud adoption


Admins can set up the system using an AWS CloudFormation template, which is a document declaring and configuring collections of AWS services. According to Trend Micro, admins can get up and running quickly with nothing more than the URI for the S3 bucket to scan.

The system only runs on AWS for now, but Trend Micro promises support for Microsoft Azure Blob Storage and Google Cloud Storage soon.

The system will enable development and deployment teams to stand up security services quickly in the cloud, helping them to meet compliance requirements, Trend Micro said. Offering it as a serverless function should enable them to fold it easily into their custom workflows.

Plus, as a cloud-native tool, it should be a useful addition to DevOps workflows and cloud migrations, helping companies to sanitize files as they enter a cloud environment.

This is the latest in a series of Trend Micro Cloud One services that include image scanning for containers, security for serverless functions, network-layer intrusion prevention systems in the cloud, and automated cloud security compliance checks.

Danny Bradbury

Danny Bradbury has been a print journalist specialising in technology since 1989 and a freelance writer since 1994. He has written for national publications on both sides of the Atlantic and has won awards for his investigative cybersecurity journalism work and his arts and culture writing. 

Danny writes about many different technology issues for audiences ranging from consumers through to software developers and CIOs. He also ghostwrites articles for many C-suite business executives in the technology sector and has worked as a presenter for multiple webinars and podcasts.