Security News > 2021 > July > Google Cloud's Intrusion Detection Service attempts to make security 'invisible' but cost will be the big giveaway

Google has introduced a new Intrusion Detection Service together with "Adaptive Protection" for its cloud firewall, but such services make security a costly feature.

CEO Thomas Kurian encouraged businesses to transfer their "Digital assets" to the cloud in order to benefit from "Cloud-native security." According to GM and VP of Cloud Security Sunil Potti, invisible security means "Security technologies are designed in... security operations as a silo disappears."

The big announcement at the event was a new service called Google IDS, which requires security operation skills to set up and maintain.

Google Cloud already has a Cloud Armor firewall and VPC Firewall.

As for the Intrusion Detection Service, this is another threat detection analyser which works by packet mirroring of network traffic both into and within a VPC. Such a service is already available by enabling packet mirroring to a third-party service, such as one provided by ExtraHop, Cisco, Netscout or Check Point.

A Google spokesperson told us: "For example, Cloud IDS integrates with Palo Alto Networks Cortex XSOAR to enable blocking malicious traffic." It would also be possible to set up a Google Cloud Function to take action such as shutting down a service or taking other actions on receipt of a critical alert.

News URL

https://go.theregister.com/feed/www.theregister.com/2021/07/21/google_cloud_intrusion_detection_system/