Use cases

This section describes various deployment and usage scenarios for File Storage Security. The scenarios are meant to provide you with some real world examples that you can use as a springboard for developing your own, custom deployment.

Use Case 1: Centralized scanner for large number of cloud storage containers

ABC Pharma is a large company that has one centralized security team that is responsible for scanning over 200 cloud storage containers among different application teams. Each team uses a different account for the cloud storage service. To build this scanning system, ABC Pharma used the File Storage Security API to deploy multiple storage stacks, connected to a single scanner, to the application teams' accounts. Note that the maximum number of cloud storage containers that can connect to a scanner at once is 50.

architectural diagram

Use Case 2: Multiple cloud storage containers in different regions

DEF Pharma is a company with offices in Tokyo and Ohio. They have 20 cloud storage containers in Tokyo and 20 cloud storage containers in Ohio. To build this scanning system, they deployed one scanner in Ohio, and used it to scan the cloud storage container across different regions by adding storage stacks in those regions. The files in Tokyo take a little longer to scan. If they wanted to improve performance, they could install another scanner in Tokyo and connect the nearby storage stacks to this scanner. These two scanners could be managed under a single Trend Micro Cloud One account.

Use Case 3: Burst of traffic

GHI Pharma is a company that receives thousands of files in peak hours. If performance is their first priority, they must ensure that there is enough concurrency for File Storage Security. When the shared or reserved concurrency is lower than the requirement for the estimated concurrency, delays can be expected due to throttles. There are three function concurrencies that can be configured: Listener, Scanner, and PostScanActionTag. When a burst of traffic occurs in the architecture with one cloud storage container and one scanner, the Listener function needs more concurrency. If the burst is caused by the accumulation of files from multiple cloud storage containers, the Listener function won't need as much concurrency. If they wanted to guarantee that the concurrency for the File Storage Security scan would not be affected by other functions in the cloud storage service, they could reserve or provision additional concurrency.

Use Case 4: Post-scan action

JKL Pharma is a company that has a security team that needs to quarantine malicious files and then notify the file owner. They are able to understand the format of the scan results in SNS topics and customize their quarantine and notification rules with sample code.

Use Case 5: Network traffic through VPC proxy

MNO Pharma is a company has a restriction to deploy every AWS resource inside a VPC to control all outbound network traffic. They are able to deploy scanner and storage stacks inside a VPC with a few stack parameters.

Use Case 6: Block malicious object from being downloaded

PQR Pharma is a company that hosts documents for users to download. If they want to make sure that users will not download malicious documents, hurting their reputation, they can use File Storage Security's scan on getObject request to block malicious files from being downloaded.