Tripwire, the provider of security and compliance solutions for enterprises and industrial organizations, announced that it has expanded support for cloud environments with Tripwire® Cloud Management Assessor (CMA). The solution now features File Integrity Monitoring (FIM) capabilities for addressing publicly exposed data in the cloud, and its core secure configuration management functionality now supports all major cloud providers, including Google Cloud Platform.
“Tripwire is dedicated to helping organizations implement critical security controls in their environments, especially as these environments grow more complex with the adoption of hybrid and multicloud models,” said Tim Erlin, vice president of product management and strategy at Tripwire. “We’ve expanded our capabilities to help organizations keep their cloud environments properly configured and prevent inadvertent exposure of their data.”
According to Erlin, there is a need to validate controls as a means to prepare for audit. For example, PCI compliance requires file integrity. Tripwire CMA’s new File Integrity Monitoring (FIM) capabilities allow organizations to discover publicly exposed cloud instances or “buckets.” In light of several recent incidents where sensitive information was mistakenly left exposed on cloud servers, Tripwire CMA can be used to ensure buckets are properly configured and data is kept secure.
The new FIM capabilities currently cover AWS S3 and Azure Blob and provide change monitoring of files stored in the cloud, as well as providing alerts to public-facing files and flagging suspicious or unauthorized changes. Additionally, these capabilities provide actionable information for mitigating issues. Tripwire’s view on foundational controls is depicted in the graphic below.
Secure configuration expanded to support all major cloud providers
Tripwire CMA was launched in 2017 to help customers determine the security state of their cloud deployments by gathering, analyzing and scoring configuration data. It ensures that consoles are securely configured according to Tripwire policies, enabling customers to follow industry best practices like the Center for Internet Security (CIS) benchmarks. In addition to supporting AWS and Azure, Tripwire CMA’s core security configuration management functionality has expanded to include Google Cloud Platform. The cybersecurity solution monitors configuration changes that may affect the confidentiality, integrity or availability of a user’s cloud assets.