Skip to main content

Google attacks cloud security head-on with new Google Cloud Platform features

google announces security features for cloud platform data center servers
Google
Google Cloud Platform (GCP) is the search engine giant’s cloud services offering that competes with Amazon Web Services and Microsoft Azure. Companies use GCP for a variety of tasks, from running simple websites to creating highly complex computing and network applications. To accomplish such functions, it utilizes Google’s data analytics, machine learning, computing, and other services, which are built into it.

On Thursday, at its Google Cloud Next ’17 event, the company detailed a number of updates to its cloud computing platform. One of the most important updates pertain to security — Google is implementing a number of new features aimed at making GCP and its G Suite productivity apps less prone to exploits.

Recommended Videos

First up is the new Identify-Aware Proxy, which lets GCP administrators manage access to applications running on the service on a more granular basis. This provides more secure application access than the “all-or-nothing” controls provided by VPN (virtual private network) access. Admins can allow access based on users, identity, and group, and it can be integrated with phishing-resistant security keys. The Identify-Aware Proxy is currently in beta.

Next up is the Data Loss Prevention (DLP) API, also in beta, which lets GCP admins scan for more than 40 sensitive data types for identification and redaction. The Data Loss Prevention API uses deep content analysis and allows admins to write policies managing sensitive data, and follows DLP for Gmail and Google Drive.

Please enable Javascript to view this content

The Key Management System for GCP, which is now generally available, lets admins generate, use, rotate, and destroy symmetric encryption keys that are used throughout the system. GCP customers can now manage multi-tenant encryption keys without a hardware security module or without having to maintain an on-premise key management system.

Security Key Enforcement is the next feature being added, and is generally available for both GCP and G Suite. It lets admins force users to use security keys as the two-step verification factor when signing into either service.

Google Drive, Team Drives, and Google Groups now have general access to Google Vault, allowing users to establish retention policies, place legal holds, and perform searches across Drive, Gmail, Hangouts, and Groups. Search results can also be exported for legal and compliance purposes.

Finally, Google has introduced Titan, a new micro-controller that the company built specifically to “establish hardware root of trust for both machines and peripherals” in Google’s cloud infrastructure. Titan allows the secure identification and authentication of legitimate access via hardware.

Image used with permission by copyright holder

If you’re a GCP or G Suite customer, these new security features are intended to both prevent and help defend against cyberattacks, and will help users enact robust enterprise security policies. To find out more about the new security features and other enhancements to Google’s cloud platform, make sure to follow along with Cloud Next ’17.

Mark Coppock
Mark Coppock is a Freelance Writer at Digital Trends covering primarily laptop and other computing technologies. He has…
Google just thwarted the largest HTTPS DDoS attack in history
A depiction of a hacker breaking into a system via the use of code.

Google has confirmed that one of its cloud customers was targeted with the largest HTTPS distributed denial-of-service (DDoS) attack ever reported.

As reported by Bleeping Computer, a Cloud Armor client was on the receiving end of an attack that totaled 46 million requests per second (RPS) at its peak.

Read more
Update Google Chrome now to protect yourself from an urgent security bug
Google Chrome app on s8 screen.

Google posted a security update for its Chrome browser that fixes what's known as a zero-day bug. The problem affects Chrome on Windows, Mac, and Android. The flaw can lead to arbitrary code execution, a serious security vulnerability, so it's best to download and install the latest version immediately. Zero-day bugs mean that this is a known weakness and, in this case, Google said that the flaw is already being exploited by hackers.

Google did not post a detailed explanation of how the exploit works, but will do so when the majority of people have updated, making the danger of further attacks less severe. The most severe bug is identified as CVE-2022-2294 and the update also patches CVE-2022-2295 and CVE-2022-2296.

Read more
All the new Chromebook features quietly announced at Google I/O
A beta showing off Google's plans for Android and Chromebook app streaming.

At the annual Google I/O developer conference, Google announced several new features coming to Chrome OS later this year. The majority are designed to bring Android phones and Chromebooks closer together with cross-device synergies like communication and app streaming.

As discussed in a 23-minute-long breakout session video, one of the top talked-about features coming to Chrome OS soon is Camera Roll. With this one, you can open and share recent photos from your Android phone on your Chromebook. It will be coming "later this year" and will live in the Chrome OS Phone Hub. From there, you can simply drag and drop the listed photos as needed.

Read more