Cloud Storage

by David Schwalenberg
May 7, 2014

This dashboard presents interactions with cloud file storage services, such as Dropbox, OneDrive, and iCloud, detected over the last 7 days.

The dashboard and its components are available in the SecurityCenter Dashboard app feed, an app store of dashboards, reports, and assets.

The dashboard requirements are:

  • SecurityCenter 4.8
  • Nessus 5.2.5
  • PVS 4.0.1
  • LCE 4.2.2

Note that this dashboard relies on PVS detections being forwarded to the LCE. Make sure that the PVS is configured to send syslog messages to the LCE: in Configuration > PVS Settings > Syslog, include the LCE host (with port 514) in the Realtime Syslog Server List. The LCE listens for syslog messages by default.

Listed below are the included components:

  • Cloud Storage - SSL Session Detections in Last 7 Days - This matrix presents detections of SSL sessions initiated to various cloud storage services that have occurred in the last 7 days.
  • Cloud Storage - Active/Passive Detections in Last 7 Days - This matrix presents active and passive detections of interactions with various cloud storage services that have occurred in the last 7 days.
  • Cloud Storage - Top IPs with SSL Sessions Over Last 7 Days - This table presents the top ten IP addresses that have initiated the most SSL sessions to cloud storage services within the last 7 days.
  • Cloud Storage - SSL Sessions Over Last 7 Days - This chart presents a 7-day trend graph of SSL sessions initiated to various cloud storage services.
  • Cloud Storage - Events Over Last 7 Days - This chart presents a 7-day trend graph of events related to various cloud storage services.