Cloud storage provider Backblaze this week announced a series of new security enhancements for its B2 platform, including AI-powered anomaly detection and improved enterprise tools to help customers better control access and management of data.
The enhancements complement Backblaze’s existing security capabilities, which include SOC 2 certified architecture and physical security, server-side encryption for data at rest, cross-origin resource sharing (CORS) support, cloud replication for data redundancy, and Object Lock for ransomware protection.
The irregularity detection function, Anomaly Alerts, uses artificial intelligence to identify suspicious patterns of data activity in storage buckets that could indicate unauthorized access or data exfiltration. The feature is currently in private preview.
Application Keys have received a significant boost, starting with Multi-Bucket Application Keys, which make it possible to create a single key that can be used for more than one specific cloud storage bucket. This enhancement provides more granular control over bucket access, reducing the attack surface.
Secondly, Backblaze is now offering Scalable Application Keys, enabling the generation of up to 10,000 unique, short-lived data access keys per minute. This Reduces the exposure window of individual keys, thereby reducing the attack surface for endpoint-generated content and high-volume data operations.
Another new feature is Custom Upload Timestamps, which let users specify the exact upload time for stored objects. This feature is critical for maintaining data integrity, supporting precise versioning, and meeting specific compliance requirements.
Backblaze also unveiled a new enterprise web console with role-based access controls, currently in in private preview, designed to Provide advanced management capabilities to larger organizations. It works with the vendor’s role-based access controls (RBAC) to streamline the scalable and secure management of cloud storage, providing the tools organizations need to align with zero-trust principles.
Event Notifications lets customers receive real-time alerts on bucket activities, such as object creation, deletion, or modification. This Enables proactive security monitoring and allows for immediate response to unauthorized or suspicious actions.
Source:: Network World