<br> # My Thoughts - Cloud Security Posture Management (CSPM) - Payment Security Industry-Data Security Standard (PCI DSS) #### Why? (목적 - 왜 기록하는가?) - 영어 스터디 진행 상황을 트래킹 #### How? (방법 - 어떻게 활용할까?) - 학습 인증을 통해 지속적인 추진력을 얻는다. #### What? (결과 - 무엇을 창조할까?) - 눈에 띄는 표현을 외우고 활용한다. <br> # Summary - Speak aloud - 08:20 ## Highlights - Cloudflare’s security posture management solution operates fundamentally differently from traditional tools that typically require either agents installed on endpoints or API connections to cloud environments. Its network-based approach enables two distinct discovery paths: - Through reverse proxy services protecting public-facing cloud applications - Via forward proxy capabilities through Cloudflare Zero Trust for employee traffic - “We’re a full Layer 7 proxy. We decrypt and re-encrypt at the edge of everything,” Tremante explained. - For employee traffic, the discovery mechanism works through either DNS resolution or full proxy capabilities. “Once we’re proxying traffic, we don’t actually differentiate who’s on the other end of that connection,” he said. “It can be a SaaS application, a custom-built internal application… as long as they’re speaking the protocols we understand.” - “If you’re in a security team and you want to make sure that only a subset of your employees are accessing Outlook or Microsoft 365, and that no content going towards Outlook is malicious so you want to block it upfront before I even reach the Outlook service, the network has an upper hand, because we’re the full proxy,” he said. - “As part of security posture management, we now discover all external facing web assets loaded in web apps,” Michael said. That capability is a key component of PCI DSS 4.0 compliance. - “This is step one, and we are definitely inching towards the full secure posture management space,” Tremante revealed. “We have plans to start performing active scanning of assets, not even onboarded onto the Cloudflare network.” <br> ## Words and Idioms ### Cloud Security Posture Management (CSPM) ### Payment Security Industry-Data Security Standard (PCI DSS) <br> # References [Cloudflare expands security portfolio with network-powered posture management \| Network World](https://www.networkworld.com/article/3847229/cloudflare-expands-security-portfolio-with-network-powered-posture-management.html) <br> # Links [[_MOC_2_English]] <br> # Tags #english #study #cloudflare #cybersecurity <br> # Aliases #영어 #공부 #클라우드플레어 #사이버보안 <br>