Cloud Web Security

Business today has changed to become more mobile and user-centric, embracing trends such as BYOD and mobile devices. Users now are demanding specific capabilities and dictating to IT staff the platforms and applications they want to use. Location and device platform are no longer constant. At the same time, cyber-attacks have become increasingly sophisticated and more targeted with threats from formidable opponents such as nation-state attackers. Attacks such as botnets and advanced persistent threats (APTs) have become harder to detect and stop, in part because they are increasingly focused on the weakest link – the user. To meet these challenges, Web Security as a Service (Web SecaaS) is defined to provide cloud-based, dynamic services to protect end-users and end-user devices without requiring hardware or static approaches to security. Generally, characteristics of Web SecaaS models should include (but limited to):

1. Cloud or SaaS delivery model for the security and management of the service

2. Minimal, if any, touch point on the server or user’s devices

3. Platform independence i.e. support for mobile, desktop and laptop environments

4. Mobility support to accommodate a user that will travel from location to location

5. Capability of updates and security resolutions through a “backend” or cloud push without requiring any work or effort on the end-user’s part