"Tripwire is dedicated to helping organisations implement critical security controls in their environments, especially as these environments grow more complex with the adoption of hybrid and multicloud models," said Tim Erlin, vice president of product management and strategy at Tripwire. "We've expanded our capabilities to help organisations keep their cloud environments properly configured and prevent inadvertent exposure of their data."
New capabilities for addressing publicly exposed cloud data
Tripwire CMA's new File Integrity Monitoring (FIM) capabilities allow organisations to discover publicly exposed cloud instances or "buckets." In light of several recent incidents where sensitive information was mistakenly left exposed on cloud servers, Tripwire CMA can be used to ensure buckets are properly configured and data is kept secure.
The new FIM capabilities currently cover AWS S3 and Azure Blob and provide change monitoring of files stored in the cloud, as well as providing alerts to public-facing files and flagging suspicious or unauthorised changes. Additionally, these capabilities provide actionable information for mitigating issues.
Secure configuration expanded to support all major cloud providers
Tripwire CMA was launched in 2017 to help customers determine the security state of their cloud deployments by gathering, analysing and scoring configuration data. It ensures that consoles are securely configured according to Tripwire policies, enabling customers to follow industry best practices like the Center for Internet Security (CIS) benchmarks. In addition to supporting AWS and Azure, Tripwire CMA’s core security configuration management functionality has expanded to include Google Cloud Platform. The cybersecurity solution monitors configuration changes that may affect the confidentiality, integrity or availability of a user’s cloud assets.