Академический Документы
Профессиональный Документы
Культура Документы
▪ CAUSE: Applications run in the cloud should conform to best practice guidance and
guidelines for assessment and ongoing management of vulnerabilities.
▪ EFFECT This can result in abuse of cloud services, insufficient due diligence, insecure
APIs, or data breach.
▪ CAUSE: Current CSP does not have operational capability to support business
requirements.
▪ EFFECT: The impact of not having a reliable CSP is significant. Revenue has been
rapidly decreasing resulting in the loss of business. Not only is business impacted but
also the client’s reputation
▪ CONDITION: The network administrator discovered that SSH communication packets were
denied because port 22 (SFTP w/ SSH) was closed on the firewall by default. Many of the
VM’s within the PROD environment, were prohibited from completing file transferring
because by default the Secure File Transfer Protocol (SFTP) was denied as traffic through
the firewall.
▪ EFFECT: Stateful inspection monitors communications packets over a period of time and
examines both incoming and outgoing packets. Outgoing packets that request specific types
of incoming packets are tracked and only those incoming packets constituting a proper
response are allowed through the firewall.