Active Defense to Google Cloud users
Everyone who uses Google Cloud, from beginners to expert users, should make security their top concern. Because to our cooperation with Acalvio, we are able to provide Active Defense to Google Cloud users. This service streamlines deception management and deployment and just requires a short onboarding process.
An overview of the architecture
The award-winning autonomous deception technology that is included in Acalvio’s proprietary Active Defense platform enables enterprises to identify, engage, and react to hostile behavior in cloud, on-premises, and hybrid networks.
ShadowPlex is able to misdirect hostile actors by providing them with tripwire baits, bread crumbs containing bogus credentials, and decoys of potentially attackable systems or applications. Any engagement with the deception platform will cause a high-fidelity alert to be generated. On Google Cloud, Acalvio offers enterprise-scale distributed deception for customers.
Active Defense from Acalvio is comprised of the client workload projection sensors for point-of-presence as well as the ShadowPlex service from Google Cloud. Deceptions are projected over dispersed and hybrid business networks by the centralized ShadowPlex service.
ShadowPlex decoy projection may be enabled by using sensors, which are lightweight components that can be put in business networks both on-premises and in cloud workloads. ShadowPlex enables deception on distant workstations that are not linked to the company network, making it possible for employees to operate remotely. It makes use of a global sensor hosted on Google Cloud.
The development of ShadowPlex on Google Cloud
ShadowPlex is able to deploy thousands of enterprise-scale deceptions throughout the customer’s network using Google Cloud for efficient Active Defense. The proprietary Fluid Deception technology developed by Acalvio boosts decoy density and interaction in environments with rigorous confinement. This enables the engagement of safe attacks and the optimization of resources.
ShadowPlex is able to warn clients about deception situations because to its integration with Google Cloud Security Command Center (SCC). Customers of Google Cloud will also get SCC emails encouraging them to consider adding Active Defense security to projects that are not ShadowPlex.
The point-of-presence for Acalvio’s Active Defense is provided via the ShadowPlex service hosted on Google Cloud as well as projection sensors embedded into client workloads. ShadowPlex is a deception hosting and projection platform that operates across hybrid and dispersed business networks.
Both on-premises and in the cloud, the ShadowPlex service is able to project decoys in business networks using lightweight sensors as the source of the projections. ShadowPlex enables deception on distant workstations that are not linked to the company network, which makes it possible for users to work from home. It is powered by a worldwide sensor hosted on Google Cloud.
The role that Google Cloud plays in powering ShadowPlex
ShadowPlex is able to effectively deploy thousands of enterprise-scale deceptions throughout the customer’s network by using Google Cloud. High levels of decoy density, interaction, and confinement are all provided by the proprietary Fluid Deception technology developed by Acalvio. This allows for secure assaults while at the same time optimizing the usage of resources.
Customers are notified of deception occurrences through ShadowPlex when the Google Cloud Security Command Center (SCC) issues an alert. Customers of Google Cloud who get SCC notices will also be encouraged to consider adding Active Defense protection to projects that are not protected by ShadowPlex.
The Google Cloud Chronicle Security Operations platform may be integrated with ShadowPlex. Customers of Chronicle have the ability to set the sending of deception occurrences and the correlation of such events with other alerts.
For internal operations, such as VirusTotal data enrichment, database administration and processing, and GKE threat analysis, ShadowPlex employs services provided by Google Cloud.
Combo is better
The deception-based Active Defense from Acalvio is available for purchase via the Google Cloud Marketplace. Clients will be able to get Active Defense’s prompt, accurate, and up-to-date identification of the most current sophisticated threats, as well as the necessary response, thanks to this partnership.
Acalvio ShadowPlex from Google Cloud now provides security to customers’ on-premises infrastructure in addition to providing Active Defense to workloads hosted in Google Cloud. The installation and maintenance of deception across on-premises networks is accomplished with the help of Google Cloud, leading to an increase in Google Cloud use.
[…] Service Defender maps threats using MITRE ATT&CK. The MITRE ATT&CK architecture lists all the methods cyber attackers may […]
[…] may respond well to risk with a robust risk mitigation strategy. This can mitigate corporate threats including cyberattacks, natural disasters, and other […]