trojan81

<div>
<div class="content wysiwyg-content">
Experts,<br />
<br />
This question is on the technology of Cloud access security broker and no specific vendor.<br />
<br />
All the vendors claim they can protect against this scenario:<br />
User downloads file from their sanctioned business Microsoft onedrive. User then uploads the files to their personal one drive. <br />
<br />
Assuming we are talking about CASB vendors that do not have an agent and only an API connector, how is it that they can protect against this scenario if they do not have any visibility into the personal one drive and no agent on the client computer?
</div>
</div>


Experts,

This question is on the technology of Cloud access security broker and no specific vendor.

All the vendors claim they can protect against this scenario:
User downloads file from their sanctioned business Microsoft onedrive. User then uploads the files to their personal one drive. 

Assuming we are talking about CASB vendors that do not have an agent and only an API connector, how is it that they can protect against this scenario if they do not have any visibility into the personal one drive and no agent on the client computer?

cloud access security broker

Cloud services are services made available to users via the Internet from a provider's servers. Cloud services are designed to provide easy, scalable access to applications, resources and services, and are fully managed by a cloud services provider. It is a model for enabling ubiquitous, on-demand access to a shared pool of configurable computing resources. Frequently offered cloud services are infrastructure-as-a-service (IaaS), desktops-as-a-service (DaaS), software-as-a-service (SaaS) and platform-as-a-service (PaaS). Examples of cloud services include online data storage and backup solutions, Web-based e-mail services, hosted office suites and document collaboration services, database processing, managed technical support services and more.

Cloud Services

Security is the protection of information systems from theft or damage to the hardware, the software, and the information on them, as well as from disruption or misdirection of the services they provide. The main goal of security is protecting assets, and an asset is anything of value and worthy of protection.  Information Security is a discipline of protecting information assets from threats through safeguards to achieve the objectives of confidentiality, integrity, and availability or CIA for short. On the other hand, disclosure, alteration, and disruption (DAD) compromise the security objectives.