Using the Enterprise File Fabric to make S3 or S3 compatible data more secure and easier to securely share

Without a doubt Amazon S3 Object Storage is the big gorilla of the storage world. Many companies, large and small, are using it to store data.

One of the challenges of using Amazon S3 has been how to secure it and how to securely share from it. There have been far too many articles with regards to S3 breaches because of mis-configuration which have been well documented, although Amazon have tried to help combat this with its recent announcement regarding public access setting for S3 buckets.

There are those that think that S3 security is flawed by design.  The simple purpose of this post is to present ways in which the Enterprise File Fabric helps to make S3 data more secure.

Continue reading “Using the Enterprise File Fabric to make S3 or S3 compatible data more secure and easier to securely share”

Facebooktwitterredditpinterestlinkedinmailby feather

How To Easily Create Private Password Protected Amazon S3 Links And Folders

As Amazon S3 has become more widely used the thorny issue of sharing files has become more of an issue. Sharing files on S3 can be complex and can involve public buckets, IAM Policies and temp URL’s. This complexity has often lead to companies setting buckets to public to enable access which in turn has led to its own issues in terms of breaches or unauthorised access.

Continue reading “How To Easily Create Private Password Protected Amazon S3 Links And Folders”Facebooktwitterredditpinterestlinkedinmailby feather

How do you solve a problem like DropBox ? (aka securing corporate dropbox accounts)

How do you solve a problem like dropbox?

DropBox has been in the press quite a lot lately with regards to passwords breaches and also with surreptitious behaviour with regard to  machine security on Mac. Although DropBox has started to reassure users with ‘how secure we are‘ type information Corporate IT departments will again feel they have cause for concern with regards any internal corporate use of DropBox.

So the key question we are trying here is ‘just do do you solve a problem like Dropbox‘ ? Indeed this is a slightly unfair question in that it is using DropBox to make a point and the reality is we could have picked on one of several cloud storage services as Corporate IT has misgivings with anything Cloud when it relates to files.

Continue reading “How do you solve a problem like DropBox ? (aka securing corporate dropbox accounts)”Facebooktwitterredditpinterestlinkedinmailby feather

Storage Made Easy Cloud Federation now supports Microsoft Office 365 custom Active Directory SSO

One of the more frequent requests we have had for the Storage Made Easy Office 365 Connector was to enable users how used their own identity management with Office 365.

This affects users who purchase Office 365 through a reseller / Distributor such as GoDaddy or for companies who are using their own Identity Management with Office 365 for Single Sign On (SSO).

Users who use Office 365 with their own identity management or third party identity management can now also use the SME O365 connector, previously limited only to Microsoft Office 365 OAuth.

Continue reading “Storage Made Easy Cloud Federation now supports Microsoft Office 365 custom Active Directory SSO”Facebooktwitterredditpinterestlinkedinmailby feather

Installing a Private Enterprise File Share and Sync Appliance on Windows Azure Compute Services

Azure-logo

This blog post is a technical post outlining the steps needed to deploy the Storage Made Easy Cloud Control Gateway and Enterprise File Share and Sync solution on the Azure IaaS compute infrastructure.

Storage Made Easy provides a private enterprise file share and sync solution that can not only be used with Azure Blob Storage Data but which can also be used as a cloud security point to secure other storage points or sync and share solutions, such as Office365 and SharePoint. We call this Cloud Control and you can read more about it here.

Continue reading “Installing a Private Enterprise File Share and Sync Appliance on Windows Azure Compute Services”

Facebooktwitterredditpinterestlinkedinmailby feather

Storage Made Easy is not affected by the OpenSSL Heartbeat overflow bug

heartbleed copy

We wanted to provide you with an update on the recently published vulnerability for OpenSSL. Please see here for an explanation regarding the vulnerability.

As soon as we were made aware of this vulnerability we immediately scanned our infrastructure to assess the potential risk.

Our analysis showed that we were not at risk to the vulnerability on our own servers nor on the IaaS or on-site cloud appliances as we are not running an affected version of OpenSSL.

Update:

LastPass HeartBleed checking tool is giving false positives. Please use any of the below sites / services that correctly check for HeartBeat vunerability in sites:

https://filippo.io/Heartbleed
https://www.ssllabs.com/ssltest

Update

We have liaises with LastPass who are using a different algorithm to issue warnings and the SME site has been whitelisted.Facebooktwitterredditpinterestlinkedinmailby feather