Story image

AWS launches 'Macie', its newest machine learning security service

16 Aug 2017

Amazon Web Services (AWS) has welcomed the newest addition to its portfolio, a machine learning security service called Amazon Macie.

So far, major global firms including Netflix and Autodesk are using the service, but now it has expanded to include Amazon Simple Storage Service (Amazon S3) customers.

The service is designed to help customers prevent data loss by automatically discovering, classifying and protecting sensitive data stored in AWS and Amazon Simple Storage Service (Amazon S3).

That sensitive data includes personally identifiable information and intellectual property. The service is able to monitor data access for anomalies and can generate alerts when unauthorised access, data leaks or when data is moved or accessed.

It is also able to customise automated remediation actions, such as password reset policies or access control list resets.

Amazon Web Services CISO Stephen Schmidt says that when sorting through massive amounts of content, identifying data manually can be like finding needles in a haystack.

 “Amazon Macie approaches information security in a more intelligent way. By using machine learning to understand the content and user behaviour of each organization, Amazon Macie can cut through huge volumes of data with better visibility and more accurate alerts, allowing customers to focus on securing their sensitive information instead of wasting time trying to find it,” he explains.

Macie works by automating formerly labour-intensive processes, such as developing and updating data classifications, through machine learning techniques.

It is able to analyse where an organisation’s sensitive information is located, how it is accessed, and basic properties of user authentication such as their location and time of access.

Once it forms a baseline, Macie then spots behaviour that looks out of place. This behaviour could be downloads of large source code amounts, unsecure credential storage or accidental public storage of private data.

AWS says that the Macie console is able to put the most important information front and centre, and is also able to guide users through issue resolution.

Netflix senior cloud security engineer Patrick Kelley says that with 104 million users in 190 countries, customer data security is critical.

“Netflix is the world’s leading internet television network with 104 million members in over 190 countries enjoying more than 125 million hours of TV shows and movies per day. “The security of our customers’ data is a top priority for Netflix, and we’ve invested substantial resources to build tools that protect sensitive information against unauthorized access or leaks,” Kelley explains.

“Since we started using Amazon Macie, we’ve found that it is flexible enough to solve a range challenges that would have previously required us to write custom code or build internal tools, such as securing PII and alerting us to access anomalies, helping us move fast with confidence.”

This week, McAfee also announced that it will make its Virtual Network Security Platform available on AWS available as a free 72-hour trial for users.

“AWS covers a lot of ground, such as security of the cloud, but users are still responsible for their security in the cloud—including securing their operating systems, applications and data traffic,” comments McAfee’s vice president of the network security business unit, Shishir Singh.

The company says that advanced malware can access AWS workloads through network traffic, cross site scripting, botnets and SQL injection attacks. If one AWS virtual server is compromised, the malware can also spread to other servers.

The Virtual Network Security Platform is able to monitor an entire network segment and protect a single workload.

Zoom’s new Rooms and Meetings features
Zoom has released information about the upcoming releases for its Rooms and Meeting offerings for 2019.
Aussie company set to democratise direct-to-orbit IoT access
Adelaide-based Myriota has released a developer toolkit that has been trialled and tested by a smart waste management platform.
Apple's AirPods now come with 'Hey Siri' functionality
The new AirPods come with a standard case or a Wireless Charging Case that holds additional charges for more than 24 hours of listening time.
Dynatrace takes pole position in APM Magic Quadrant
It placed highest on Ability to Execute and furthest on Completeness of Vision in the 2019 Quadrant for Application Performance Monitoring (APM).
HCL and Xerox expand strategic partnership
Under the terms of the agreement, HCL will manage portions of Xerox’s shared services, including global administrative and support functions.
Avaya expands integration with Google Cloud AI
This includes embedding Google’s machine learning within conversation services for the contact centre, enabling integration of AI capabilities.
Forrester names Crowdstrike leader in incident response
The report provides an in-depth evaluation of the top 15 IR service providers across 11 criteria.
Poly appoints new A/NZ managing director, Andy Hurt
“We’re excited to be bringing together two established pioneers in audio and video technology to be moving forward and one business – Poly."