本文深入探讨了云安全网关在企业级云资源访问中的作用,阐述了其作为安全策略执行点的重要性,以及如何整合多种安全策略,如认证、单点登录、授权、安全令牌映射、加密、标记化、日志记录、警报、API控制等。
如下图所示:
很显然,大量的技术都集中在初始阶段。其中有一个比较有趣的是云安全网关。
Gartner介绍到,Cloud security gateways are on-premises or cloud-based security policy enforcement points placed between cloud service consumers and cloud service providers to interject enterprise security policies as the cloud-based resources are accessed. Cloud security gateways consolidate multiple types of security policy enforcement. Example security policies include authentication, single sign-on, authorization, security token mapping, encryption, tokenization, logging, alerting, API control and so on.
Multiple forms of security that already exist in the form of proxies, sitting outside of the cloud, either in the enterprise or in some other provider's cloud. Cloud security gateways, security appliances for cloud application control, and cloud services brokerages, are early examples of how control mechanisms can be stacked through a chain of cloud-based providers. For enterprise customers to ensure that incoming requests from their users are "filtered" through the proxy service, the cloud application service must provide some reliable enforcement mechanism.
扫一扫
1271
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
