Exact data match (EDM) is an advanced data loss prevention (DLP) technique that finds specific data values that are important to the organization and need to be protected rather than finding general data patterns or formats only. For example, an organization can detect the exact match of a customer credit card number, rather than detecting only the pattern, to enhance detection accuracy and reduce false positives.
Data loss prevention (DLP) is a set of technologies and processes that monitor and inspect data on a corporate network to prevent exfiltration of critical data as a result of cyberattacks, such as phishing or malicious insider threats. Sensitive data such as personally identifiable information (PII), protected health information (PHI), credit card numbers, and intellectual property is an organization’s lifeblood, so it's critical to implement strong data security.
クラウド データ保護は、クラウド環境に存在するデータやクラウド環境を出入りするデータを保護するために設計された一連のデータ ストレージとセキュリティ対策です。保存されたデータは「保存データ(data at rest)」、移動中のデータは「転送中データ(data in motion)」と呼ばれます。データ保護とは単純に「保護」することではなく、データをコピーすることを意味し、機密データを紛失したり破損したりした場合でも、無傷なコピーの存在を保証するものです。これに対し、データ セキュリティは不正なアクセスや分散からデータを保護することになります。
Data security is a term for all the security solutions that help organizations protect their sensitive data from security risks such as data breaches, phishing, ransomware attacks, and insider threats. As a general rule, data security also draws on compliance requirements such as HIPAA and GDPR to simultaneously ensure data privacy.
SSL decryption is the process of unscrambling encrypted traffic to check it for cyberthreats as part of a full SSL inspection procedure. It’s a vital network security capability for modern organizations since the overwhelming majority of web traffic is now encrypted, and some cybersecurity analysts estimate more than 90% of malware may now hide in encrypted channels.
A shared responsibility model is a cloud security and risk framework that delineates which cybersecurity processes and responsibilities lie with a cloud service provider (CSP) and which lie with the customer. With more IT architectures moving to the cloud, a shared responsibility model promotes tighter security and establishes accountability as it relates to the security of the cloud.
SSL inspection is the process of intercepting and reviewing SSL-encrypted internet communication between the client and the server. The inspection of SSL traffic has become critically important as the vast majority of internet traffic is SSL encrypted, including malicious content.
Shadow IT is a term for SaaS applications employees access and use without the knowledge or permission of their information technology departments. Such applications aren’t inherently flawed or dangerous—“shadow IT” simply means an app is being used without IT’s explicit approval or oversight, which increases risk for an organization.
A reverse proxy is a server, app, or cloud service that sits in front of one or more web servers to intercept and inspect incoming client requests before forwarding them to the web server and subsequently returning the server’s response to the client. This supports security, scalability, and performance for websites, cloud services, and content delivery networks (CDNs). A reverse proxy offered as a cloud service is one of the deployment modes of a cloud access security broker (CASB).
The Purdue model is a structural model for industrial control system (ICS) security that concerns segmentation of physical processes, sensors, supervisory controls, operations, and logistics. Long regarded as a key framework for ICS network segmentation to protect operational technology (OT) from malware and other attacks, the model persists alongside the rise of edge computing and direct-to-cloud connectivity.