C
CASB (Cloud Access Security Broker)
A security solution that sits between cloud service users and providers to enforce security policies and provide visibility into cloud usage.
What is CASB?
A Cloud Access Security Broker (CASB) is a security policy enforcement point positioned between cloud users and cloud service providers. CASBs provide visibility, compliance, data security, and threat protection for cloud services.
CASB Pillars
- Visibility: Discover all cloud services in use (including shadow IT)
- Compliance: Ensure cloud usage meets regulatory requirements
- Data Security: DLP, encryption, access control
- Threat Protection: Detect and prevent cloud-based threats
CASB Deployment Models
- API-based: Connects directly to cloud service APIs
- Proxy-based: Inline inspection of traffic (forward/reverse proxy)
- Log-based: Analyzes logs from existing infrastructure
- Hybrid: Combination of approaches
Key Capabilities
- Shadow IT discovery
- User behavior analytics
- Data loss prevention (DLP)
- Encryption and tokenization
- Access control and authentication
- Malware detection
- Compliance reporting
CASB Use Cases
- Controlling access to sanctioned cloud apps
- Discovering unsanctioned cloud usage
- Preventing data exfiltration
- Ensuring GDPR/HIPAA compliance
- Securing BYOD access to cloud services