CCSK

 View Only
  • 1.  CASB vs. Web Proxies?

    Posted Sep 13, 2021 03:17:00 PM
    In Domain 11 of the Security Guidance, they talk about CASBs. I was wondering, what are the differences between CASB and web proxies?

    ------------------------------
    Jenna Morrison
    Training Department Intern
    Cloud Security Alliance
    ------------------------------


  • 2.  RE: CASB vs. Web Proxies?

    Posted Sep 21, 2021 07:16:00 AM
    Hi Jenna,
    I just signed up here, so this is my first post :)

    Related to your question, as far as I know, CASB is a specific solution to be integrated with Cloud environments. It analyze the traffic (maybe decrypt) to cloud providers to identify what kind of info is going out. You can apply some sec policies with CASB to take control of the communication between users and Cloud Provider.
    On the other hand, a web proxy analyzes outgoing web traffic but it is not a specific solution for cloud traffic. For example, a web proxy could limit browsing to certain categories (eg "social networks", "videogames", "news"). Perhaps one of those categories is "cloud services", so you can realize if a user is connecting to "Dropbox" for example, but it cannot be as granular as CASB.

    Regards!

    ------------------------------
    Laura Alvarez
    Sec Arquitect
    Fluidra
    ------------------------------



  • 3.  RE: CASB vs. Web Proxies?

    Posted Sep 22, 2021 10:46:00 AM
    Welcome to Circle! I'm glad you joined this community and are already offering your insights :)

    And thank you for your response it was very helpful!

    ------------------------------
    Jenna Morrison
    Training Department Intern
    Cloud Security Alliance
    ------------------------------



  • 4.  RE: CASB vs. Web Proxies?

    Posted Sep 27, 2021 08:32:00 AM
    Hello Jenna, Laura,

    I joined here today and this is my first post too. :) 

    Laura is perfectly right in that CASB has far more granular controls compared to web proxies which are simpler devices. A few other differences that I could think of:
    - CASBs could be implemented as forward proxies, reverse proxies or even using APIs. When implemented using APIs they could potentially help with Data Leakage Prevention to the extent of having the ability to protect 'data at rest' too. 
    - CASBs can detect and prevent malware from exfiltrating data
    - CASBs also have an updated list of independent risk assessment for each cloud service. The strength of this database of information is what differentiates one CASB from another. 
    - CASBs could use machine learning for detecting threats
    - CASBs can help prevent users from downloading data to unprotected devices

    CASBs thus have a bunch of such functions which help implement the 'Zero Trust' network of today. They add on to and complement the web proxies of earlier days whose only function was to prevent users inside a network from accessing illicit content outside.  

    Hope this helps!!

    ------------------------------
    Janit Vora
    Enterprise Architect
    Tata Consultancy Services Ltd
    ------------------------------



  • 5.  RE: CASB vs. Web Proxies?

    Posted Sep 28, 2021 03:51:00 PM
    Welcome to Circle!

    I appreciate your reply and the examples you gave. This was very helpful :)

    ------------------------------
    Jenna Morrison
    Training Department Intern
    Cloud Security Alliance
    ------------------------------



  • 6.  RE: CASB vs. Web Proxies?

    Posted Oct 13, 2021 09:28:00 AM
    Hi Jenna, 

    CASB is a separate, and differentiated market from proxies and firewalls. While CASBs can be deployed in forward or reverse proxy mode to enforce inline controls, the similarities to web proxies stops there. Unlike network security solutions that focus on a wide variety of inbound threats and filtering for millions of potentially illicit websites, a CASB is focused on deep visibility into and granular controls for cloud usage. A CASB can also be deployed in an API mode to scan data at rest in cloud services and enforce policies across this data.


    ------------------------------
    Reza Safari
    Training administration intern
    CSA
    ------------------------------



  • 7.  RE: CASB vs. Web Proxies?

    Posted Oct 14, 2021 11:28:00 AM
    Thank you for your reply! Also, the graphic which you included is a nice visual :)

    ------------------------------
    Jenna Morrison
    Training Department Intern
    Cloud Security Alliance
    ------------------------------



  • 8.  RE: CASB vs. Web Proxies?

    CSA Instructor
    Posted Oct 15, 2021 07:37:00 AM
    Great graphics.
    I'd like to see some elaboration of the API mode. Despite a few attempts, no vendor managed to explain this to me properly. Maybe a real use case would help.

    ------------------------------
    Peter HJ van Eijk
    CCSK & CCAK trainer
    https://www.clubcloudcomputing.com/
    ------------------------------



  • 9.  RE: CASB vs. Web Proxies?

    CSA Instructor
    Posted Oct 15, 2021 12:36:00 PM
    Edited by Guillaume Boutisseau Oct 15, 2021 12:41:04 PM
    These 2 articles might be of interest - they cover casb vs proxies, and casb deployment modes :

    https://www.mcafee.com/blogs/enterprise/cloud-security/how-casb-is-different-from-web-proxy-firewall/

    https://www.mcafee.com/blogs/enterprise/cloud-security/casb-cloud-access-security-brokers-deployment-modes-best-practices/

    ------------------------------
    Guillaume Boutisseau
    CCSK Authorized Instructor , CCSP
    ------------------------------