Case Studies
Company Profile
Photosynth inc.
Photosynth inc. is a pioneering IoT security vendor that develops and provides "Akerun," the world's first, cloud-based retrofit smart lock. With its mission "To embed impressive experiences into the future through connected manufacturing," the company is driving its business forward to create a keyless society, where the company liberates people from the constraints and inconveniences around “traditional” physical keys through providing smart locks.
Security Challenges
As the business and user base expanded, the company saw an increase of services and resources provisioned within the AWS environment, a cloud infrastructure of Akerun services. Given that their solution provides and manages "(digital) keys," an important security infrastructure of their customers, it became crucial for the company to ensure quality of services and strengthen security measures for the expanding service infrastructure. In the process of enhancing security, the company faced significant challenges including resource constraints and increased workload, and it realized that it was difficult to monitor and address daily security events and alerts alongside core business operations.
Reasons for
CloudFastener Introduction
With these challenges, Photosynth considered implementing security measures from the present into the future and adopted CloudFastener. Reasons for the adoption are as follows:
- Reassurance from having a dedicated team assigned for security operations, rather than just tool provision
- Flexibility to customize which items to keep in-house and which to outsource
- Appropriate and in-depth operational knowledge of various security services
Values of CloudFastener
By utilizing CloudFastener, the company has eliminated its burden to monitor security alerts and logs reported from deploying security services as CloudFastener handles time-consuming triage and investigation responses. As a result, the company is able to focus more on its core business operations to increase the value of Akerun services.
Photosynth expects CSC to continue driving service quality enhancement, enabling customers to use safer AWS cloud services and infrastructure.
Solutions Offered by CloudFastener
AWS Infrastructure Vulnerability Scanning
CloudFastener utilizes "Amazon Inspector" to regularly scan AWS infrastructure resources for vulnerabilities. Newly added resources are automatically detected and included in the scan. Based on the scan results, CloudFastener's Technical Account Managers make decisions on remediation and prioritization, supporting both the decision-making process and the actual resolution of vulnerabilities.
Managed Web Application Firewall (WAF)
CloudFastener provides a managed firewall service leveraging "AWS WAF", designed to protect web applications and APIs from exploits. Additionally, CloudFastener's Technical Account Managers regularly provide WAF detection reports, supporting clients with insight into detection statuses and offering advice on configuration changes.
AWS Security Best Practices Monitoring
CloudFastener uses "AWS Security Hub" to detect whether AWS accounts and resource configurations comply with security best practices. The detection results are integrated into CloudFastener's SIEM, where guidance on remediation and Q&A support regarding the scope of impacts are provided.
Security Challenges
There were no dedicated security personnel, and security alerts were handled alongside development tasks. Catching up on cloud security concepts and best practices required additional effort. As the service expanded, the need for safer service delivery became paramount, and there was a sense of uncertainty about where to start and the necessary level of security measures. At this point, CloudFastener was introduced.
Reasons for CloudFastener Introduction
- They not only provide standard responses but also offer consulting services aimed at improving security levels
- The reassurance that comes from being able to entrust daily operations to CloudFastener
- The ability to accumulate security knowledge while using the service, contributing to organizational development and culture
Values of CloudFastener
First and foremost, CloudFastener visualized our current risks in AWS and clarified the roadmap for countermeasures and enhancements, which made it clear what resources we needed to prepare internally. Furthermore, they provide concrete proposals for improving our security levels. This not only allows us to outsource daily operations but also enables us to accumulate information within our company. As a result, we feel this is contributing to raising security awareness among our internal engineers.
Solutions Offered by CloudFastener
AWS Resource Inventory Visualization
CloudFastener utilizes “AWS Config” to continuously scan and report on all AWS resources and their configuration details. The inventory is automatically updated to reflect the addition or removal of resources. By visualizing the resource inventory, investigations such as incident responses can be conducted more efficiently and quickly.
AWS Compliance Monitoring
CloudFastener leverages “AWS Security Hub” to scan customers' AWS environments and monitor compliance with frameworks such as CIS AWS Foundations and PCI DSS.
Incident Response Monitoring and Triage
CloudFastener uses “Amazon GuardDuty” to provide notifications for high-priority, verified security event alerts, along with guided response support, including recommended remediation actions.