Google Announces New Tools and Services to Boost Cloud Security
Google Cloud has announced several new security tools, products, and… Continue reading Google Announces New Tools and Services to Boost Cloud Security
Category Archives: Google Cloud Platform
How to install cloud software locally for security research [migrated]
How you can test cloud software locally?
For AWS, there is Localstack, but what about Google Cloud, and Azure?
I want to try it, change a lot of configurations and maybe install some software there, that is why I don’t want to use the remo… Continue reading How to install cloud software locally for security research [migrated]
Is Google Cloud Database encryption with customer specified keys PCI and / or HIPAA compliant?
Amateur Question… We’ve written a SaaS application that runs in Google Cloud on a GCP-managed MySQL database. We now need to make our application PCI and / or HIPAA compliant. I know we need to specify our own encryption key and keep it … Continue reading Is Google Cloud Database encryption with customer specified keys PCI and / or HIPAA compliant?
Google Finalizes $5.4 Billion Mandiant Acquisition
Google announced this morning that its $5.4 billion acquisition of… Continue reading Google Finalizes $5.4 Billion Mandiant Acquisition
Risk scenarios when hosting KEK in Google Cloud KMS HSM backended [closed]
For some time now, we have been assessing the risks from a GDPR perspective when data (data-at-rest) in the Google Cloud is fully encrypted using native means. This means that we create both the KEK and the DEK completely with Google Cloud… Continue reading Risk scenarios when hosting KEK in Google Cloud KMS HSM backended [closed]
Microsoft Changes Licensing Policies to Support Small Cloud Vendors
Microsoft has announced some important changes to its restrictive software… Continue reading Microsoft Changes Licensing Policies to Support Small Cloud Vendors
Google Cloud Mitigated a Record-Breaking HTTPS DDoS Attack
Google has announced that it blocked the largest distributed denial-of-service… Continue reading Google Cloud Mitigated a Record-Breaking HTTPS DDoS Attack
Google to Open Three New Cloud Regions in Malaysia, Thailand, and New Zealand
Google has announced that it’s building three new cloud regions… Continue reading Google to Open Three New Cloud Regions in Malaysia, Thailand, and New Zealand
How to configure CDN GCP bucket access privileges
We use GCP Cloud Storage and Cloud CDN to deliver some static assets (html/css/js/.jpg/.png). The buckets used to store those are public with anonymous access (i.e. allUsers in GCP terms).
On one hand Cloud CDN documentation seems to encou… Continue reading How to configure CDN GCP bucket access privileges
Best practice to access secret in Google Secretmanager?
In Google Cloud I am trying to access a secret, my code is:
blob.download_to_filename(‘key.json’)
credentials = service_account.Credentials.from_service_account_file(‘key.json’)
secret_client = secretmanager.SecretManagerServiceClient(cred… Continue reading Best practice to access secret in Google Secretmanager?