• TREND MICRO
  • ABOUT
Search:
  • Latest Posts
  • Categories
    • Android
    • AWS
    • Azure
    • Cloud
    • Compliance
    • Critical Infrastructure
    • Cybercrime
    • Encryption
    • Financial Services
    • Government
    • Hacks
    • Healthcare
    • Internet of Everything
    • Malware
    • Microsoft
    • Mobile Security
    • Network
    • Privacy
    • Ransomware
    • Security
    • Social Media
    • Small Business
    • Targeted Attacks
    • Trend Spotlight
    • Virtualization
    • Vulnerabilities
    • Web Security
    • Zero Day Initiative
    • Industry News
  • Our Experts
    • Ed Cabrera
    • Rik Ferguson
    • Greg Young
    • Mark Nunnikhoven
    • Jon Clay
    • William “Bill” Malik
  • Research
Home   »   iaas

Architecting Highly Secure Applications on AWS

  • Posted on:August 23, 2013
  • Posted in:Cloud
  • Posted by:
    Mark Nunnikhoven (Vice President, Cloud Research)
0

AWS re:Invent This year, AWS re:Invent is once again being held in Las Vegas (12–15-Nov-2013). The 4 day conference focuses on all things AWS and the schedule is packed with talks, bootcamps, hands-on labs, and other events. If you didn’t attend last year, you can check out the videos online to get a feel for the…

Read More
Tags: AmazonAWSCloud SecurityDeep Security as a ServiceiaasSecureCloud

5 Questions to Ask Your Security Vendor about AWS

  • Posted on:April 30, 2013
  • Posted in:Cloud
  • Posted by:
    Trend Micro
0

Over the past weeks we have been reviewing the top 10 tips for securing instances running on Amazon Web Services. We walked through the critical controls as part of the AWS shared security model. As noted in these tips, host-based security capabilities such as intrusion detection and prevention, anti-malware, and integrity monitoring are critical for…

Read More
Tags: AmazonAmazon EC2amazon machine imageamazon web servicesAWSChefCloud SecurityCloudFormationDeep SecurityDeep Security as a Servicehow to secure AWSiaasproductPuppetRightScalesecuring AWStrend micro

Top 10 AWS Security Tips: #9 Conduct Vulnerability Assessments

  • Posted on:April 10, 2013
  • Posted in:Cloud
  • Posted by:
    Trend Micro
0

In this series, Mark and I have talked about hardening your AWS resources (both inside and outside of your instances) and preforming ongoing monitoring. The last two tips are around measuring your overall security so that you can understand your risks and measure your progress. It may be an old adage but it still rings true……

Read More
Tags: AmazonAmazon EC2amazon machine imageamazon web servicesAWSCloud Securityhow to secure AWSiaasvulnerabilityvulnerability management

Top 10 AWS Security Tips: #6 Secure Your Applications Using a Host-Based Intrusion Prevention System

  • Posted on:March 20, 2013
  • Posted in:Cloud
  • Posted by:
    Mark Nunnikhoven (Vice President, Cloud Research)
0

So far in this series, Justin and I have provided tips for securing the foundations of your AWS deployment. Taken together, these tips work to reduce the overall attack surface—the area exposed to the outside world—of your application. Now it’s time to add the next layer of controls to you application, starting with a host-based…

Read More
Tags: AWSAWS risk and complianceaws securityAWS security best practicescloudcloud-based securitycross-site scriptingDeep SecurityDeep Security as a ServiceEC2how to secure AWSiaasintrusion preventionIPSPublic Cloudsecure your applicationSQL injectionVPC

Top 10 AWS Security Tips: #4 Protecting Guest Operating Systems

  • Posted on:March 6, 2013
  • Posted in:Cloud
  • Posted by:
    Mark Nunnikhoven (Vice President, Cloud Research)
0

Last week, Justin covered some of the high level issues around AMI development. This week, we’re going to take a look at how to protect the guest operating system running on your EC2 and VPC instances. AWS Recommendations AWS had published quite a few papers around their services. AWS Security Best Practices [PDF] and AWS Risk and…

Read More
Tags: AWSAWS risk and complianceaws securityAWS security best practicescloudcloud-based securityDeep SecurityDeep Security as a ServiceEC2how to secure AWSiaasPatchpatchingprinciple of least privilegePublic Cloudsecure your applicationvirtual patchingVPC

Top 10 AWS Security Tips: #3 Build a Secure Base Amazon Machine Image (AMI)

  • Posted on:February 28, 2013
  • Posted in:Cloud
  • Posted by:
    Trend Micro
2

In our previous top tips for AWS security we looked at hardening access to your AWS resources through proper use of IAM, policies and authentication. In this tip we turn our focus to hardening your Amazon Machine Images (AMI). No matter whether you pronounce it A.M.I or Ahhh-ME (as the AWS folks do) your machine…

Read More
Tags: AmazonAmazon EC2amazon machine imageamazon web servicesAMIAMI from AmazonauthenticationAWSAWS OpsWorksChefCloud SecurityCreating your own AMIhow to secure AWSiaasIAMmarketplacepoliciesPublic CloudPuppetRightScaleSecurity guidance for AMI developersSharing AMIs safelySysrep

What does the Oracle at Delphi say about IaaS cloud offerings?

  • Posted on:December 17, 2012
  • Posted in:Cloud
  • Posted by:
    Trend Micro
0

Referencing Wikipedia: The Pythia , commonly known as the Oracle of Delphi, was the priestess at the Temple of Apollo at Delphi, located on the slopes of Mount Parnassus. The Pythia was widely credited for her prophecies inspired by Apollo. Amazon Web Service’s (AWS) first user conference in November 2012 was over-subscribed and sold out. Given that the company offers all the infrastructure you need…

Read More
Tags: Cloud InfrastructureCloud SecuritycloudburstingCloudSynDellhybrid-cloudiaasinfrastructure as a serviceMicrosoftOpenStackPublic CloudvCloudvirtualizationVMware

It Gets Cloudy at Dell World

  • Posted on:December 13, 2012
  • Posted in:Cloud
  • Posted by:
    Dave Asprey
2

Dell World this week was huge. In addition to turning up the cloud strategy to full volume, Dell had Bill Clinton as a guest speaker. Very worthwhile conference, especially the Dell World Social Think Tank: IT Innovation, where I joined about 10 senior cloud thought leaders and another dozen execs from Dell for an invitation-only…

Read More
Tags: AustinBill ClintonCloud SecurityCloudFoundryDellDell World 2012DellWorldiaasIBMOpenStackpaasPrivate CloudVMware

What Are the True Dangers of the Cloud?

  • Posted on:September 8, 2011
  • Posted in:Cybercrime, Virtualization
  • Posted by:
    Trend Micro
7

We often hear that security and privacy concerns are the main inhibitors to cloud adoption.  But what are the true threats?  Is the cloud really more dangerous than your on-site data center?  I would say that virtualization and cloud computing aren’t inherently more dangerous, but they have unique infrastructure that must be addressed when creating…

Read More
Tags: cloud computingCloud Securitycybercrimecybercriminalsdatacenterhybrid cloudhypervisorsiaaspaasPrivacyPrivate CloudPublic Cloudsaassecuritysecurity best practicesthreat reportthreatsvirtualizationVMs

Encryption is Not Enough for Cloud Security

  • Posted on:September 1, 2011
  • Posted in:Cloud
  • Posted by:
    Trend Micro
5

By saying that encryption is not enough for cloud security, I don’t mean that you also need other types of protection like server security, identity management, etc.  I think most people deploying cloud computing plan to implement more than encryption for security.  What I mean is that encryption alone is not enough in an encryption…

Read More
Tags: cloud computingCloud SecurityDeep SecurityEncryptioniaasPrivate CloudPublic CloudSecureCloud
Page 1 of 512 › »

Security Intelligence Blog

  • Our New Blog
  • How Unsecure gRPC Implementations Can Compromise APIs, Applications
  • XCSSET Mac Malware: Infects Xcode Projects, Performs UXSS Attack on Safari, Other Browsers, Leverages Zero-day Exploits

Featured Authors

Ed Cabrera (Chief Cybersecurity Officer)
Ed Cabrera (Chief Cybersecurity Officer)
  • Ransomware is Still a Blight on Business
Greg Young (Vice President for Cybersecurity)
Greg Young (Vice President for Cybersecurity)
  • Not Just Good Security Products, But a Good Partner
Jon Clay (Global Threat Communications)
Jon Clay (Global Threat Communications)
  • This Week in Security News: Ransomware Gang is Raking in Tens of Millions of Dollars and Microsoft Patch Tuesday Update Fixes 17 Critical Bugs
Mark Nunnikhoven (Vice President, Cloud Research)
Mark Nunnikhoven (Vice President, Cloud Research)
  • Twitter Hacked in Bitcoin Scam
Rik Ferguson (VP, Security Research)
Rik Ferguson (VP, Security Research)
  • The Sky Has Already Fallen (you just haven’t seen the alert yet)
William
William "Bill" Malik (CISA VP Infrastructure Strategies)
  • Black Hat Trip Report – Trend Micro

Follow Us

Trend Micro In The News

  • Trend Micro Offerings Are FedRAMP Authorized and Available on AWS
  • Fujitsu and Trend Micro Demonstrate Solution To Secure Private 5G
  • Trend Micro Receives 5-Star Rating in 2021 CRNÂŽ Partner Program Guide
  • Smart Factory Cyber Attacks Knock Out Production for Days
  • Eliminate Hesitations: Security Simplified For Those Building In The Cloud
  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, MĂŠxico
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, EspaĂąa, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © 2017 Trend Micro Incorporated. All rights reserved.