Google Cloud Platform Security Overview Reviews

Artifactory Reviews

Google Cloud Platform Security Overview mentions (4)

• H4CK1NG G00GL3

  Hacking Google to Defend Enterprises - YouTube - https://m.youtube.com/watch?v=dhdz5VZ4S88 Summary: Chief Information Security Officer of Google Cloud, Phil Venables, covers all the teams listed in prior videos and describes how Google Cloud helps secure its customers. Response: As an outsider watching video series, while it is possible I misunderstood, appears the Google Cloud CISO is the highest-level security... - Source: Hacker News / over 1 year ago

• HPE Aruba Central Breach

  Compliance wise all major cloud datacenters are compliant from the moon and back https://cloud.google.com/security/ + https://docs.microsoft.com/en-us/azure/compliance/ unlike most IT departments. Source: over 2 years ago

• Revealed: leak uncovers global abuse of cyber-surveillance weapon

  I would argue that my data is safer with Google than with Apple. Especially since Google encrypts data even at rest. More here - https://cloud.google.com/security/. Source: almost 3 years ago

• Google Docs has won the office suite war among one generation

  We undergo independent verification of our security, privacy, and compliance controls to help you meet your regulatory and policy objectives. Find details on our full set of compliance offerings, like ISO/EC 27001/27017/27018/27701, SOC 1/2/3, PCI DSS, and FedRAMP certifications, and alignment with HIPAA GDPR, and CCPA, among others, in our Compliance resSOurce center. Source: about 3 years ago

Artifactory mentions (20)

• Where to store executables shared by a team/project

  I kind of hate it, but Artifactory seems popular at companies: https://jfrog.com/artifactory/. Source: 12 months ago

• Adding Virtual Environments to Git Repo

  When not providing all dependencies yourself, you might suffer from people deleting the packages you depend on (IMHO a very rare scenario). If it is really that critical (hint: usually it isn't), create a local mirror of Pypi (full or only the packages you need). Devpi, Artifactory, etc. Can do that or you just dump the necessary files into Cloud storage, so you have a backup. Source: about 1 year ago

• Authenticated Docker Hub image pulls in Kubernetes

  Operate a pull-through cache registry, like Artifactory or the open source reference Docker registry. This will allow you to pull images from Docker Hub less frequently, improving your chances of staying under the anonymous usage limit. - Source: dev.to / about 1 year ago

• Concretely, how do you trust the experts? That is, how do you a) identify experts relevant to something and b) determine if they have a consensus (and if so, what it is) on a given topic?

  Like suppose for a second that . . . Idk . . . a product team wants our ci workflows to start using Artifactory. Okay great, I don't know Artifactory integration but I'm going to tell them "Sure, I'll get right on that.". Source: over 1 year ago

• What do I do with large "asset" files?

  If these "assets" have an independent release schedule I would treat them separately (especially if they are externally provided). If they are not built from source then treat them as artefacts, they don't belong in git. You can store the in an artefact repository (like Artifactory of Nexus) or (as u/nekokattt points out) in something like S3. Source: over 1 year ago