Compute security definition
Compute security combines measures, practices, and technologies you use to protect computer systems. It secures hardware, software, and information from unauthorized access, damage, or theft. Compute security involves many layers of protection spread across computers, networks, and data.
See also: host intrusion prevention system, intrusion detection system, application allow-listing
How to ensure compute security?
Hardware protection:
- Physical security. Ensure data centers and server rooms have restricted access, surveillance cameras, and authentication mechanisms in place.
- Anti-tamper technology. Use technology that detects and responds to attempts to access or change hardware components.
- Secure boot. Ensure that only signed and trusted software can run during the boot process.
Software protection:
- Always update software to fix vulnerabilities.
- Use antivirus software to detect, quarantine, and remove malware.
- Install intrusion detection and prevention systems. They will monitor and analyze system activity for signs of malware.
- Use application allow-listing so only approved software can run on the protected systems.
- Set up virtualization security to protect virtual machines and their host systems from threats.
- Use firewalls to filter and monitor traffic to protect web applications.
Data protection:
- Encrypting data to prevent unauthorized access, both in transit and at rest.
- Having a backup and disaster recovery plan to ensure you can restore your information after a security incident.
- Using data loss prevention tools to monitor and control data transfer across the organization's network.
- Implementing permissions and robust authentication to ensure only authorized users can access sensitive data.