Date: Wed, 20 May 2020 00:00:00 +0000
<p>On this episode of the podcast, our old pal <a href="https://twitter.com/markmirch">Mark Mirchandani</a> is joined by special guest host <a href="https://twitter.com/maxsaltonstall">Max Saltonstall</a> to talk trust and security with fellow Googler <a href="https://twitter.com/RobSadow">Rob Sadowski</a>. BeyondCorp is Google’s answer to allowing employees to use company networks on any device while outside the building in a way that is both secure and efficient. Users are authenticated per session and per device to give access only to the specific person, on the specific device, for the specific job each time. In addition to the thorough authentication process, BeyondCorp continues to monitor device metadata during use as part of the system’s decision to continue to trust (or not trust) a user. With this information, if a user accidentally exposes the system to malware, for example, access can be revoked quickly.</p> <p>Max and Rob explain the steps Google went through to create such a state-of-the-art security program and give tips on how companies can build something similar. Codifying your employees’ needs and preferences, detailing the levels of trust you’ll allow, and thinking ahead about where in the world your employees will be when they access the system are some of their tips. Rob stresses how complicated the system was to build from scratch and emphasizes that with BeyondCorp Remote Access, companies don’t have to build a whole new system.</p> <p>BeyondCorp Remote Access offers automatic scaling and world-wide points of presence for a fast user experience anywhere in the world. Companies can define access rules for each user, setting trust levels and parameters for who can access what parts of the network. Rob points out that this is a great solution, not only for employees who find themselves working from home due to the current global climate, but also for freelance or contract workers who only need access to parts of the internal system.</p> <h5 id="rob-sadowski">Rob Sadowski</h5> <p>Rob Sadowski is the Trust & Security Product Lead for Google Cloud at Google. He is responsible for creating and delivering Google Cloud’s security message, spanning platforms, applications, and connected devices.</p> <h5 id="cool-things-of-the-week">Cool things of the week</h5> <ul> <li>Using Bigtable’s monitoring tools, meant for a petabyte-scale database, to… make art <a href="https://medium.com/google-cloud/using-a-petabyte-scale-databases-monitoring-tools-to-make-art-8aa8eb17234"> blog</a> <ul> <li>GCP Podcast Episode 192: Cloud Bigtable with Billy Jacobson <a href="https://www.gcppodcast.com/post/episode-192-cloud-bigtable-with-billy-jacobson/"> podcast</a></li> </ul> </li> <li>A simple, secure way for teams to meet and work: G Suite Essentials is here <a href="https://cloud.google.com/blog/products/productivity-collaboration/now-available-g-suite-essentials"> blog</a></li> </ul> <h5 id="interview">Interview</h5> <ul> <li>BeyondCorp <a href="https://cloud.google.com/beyondcorp">site</a></li> <li>BeyondCorp Remote Access <a href="https://cloud.google.com/solutions/beyondcorp-remote-access">site</a></li> <li>BeyondCorp: A New Approach to Enterprise Security <a href="https://research.google/pubs/pub43231/">paper</a></li> <li>BeyondCorp: Design to Deployment at Google <a href="https://research.google/pubs/pub44860/">paper</a></li> <li>BeyondCorp: The Access Proxy <a href="https://research.google/pubs/pub45728/">paper</a></li> <li>Migrating to BeyondCorp: Maintaining Productivity While Improving Security <a href="https://research.google/pubs/pub46134/">paper</a></li> <li>BeyondCorp: The User Experience <a href="https://research.google/pubs/pub46366/">paper</a></li> <li>BeyondCorp 6: Building a Healthy Fleet <a href="https://research.google/pubs/pub47356/">paper</a></li> <li>NYC Cyber Command <a href="https://www1.nyc.gov/site/cyber/index.page">site</a></li> </ul> <h5 id="tip-of-the-week">Tip of the week</h5> <p>This week, Max talks about <a href="https://www.google.com/landing/2step/">2-step verification</a>, security keys, and why you need them!</p> <h5 id="what-s-something-cool-you-re-working-on">What’s something cool you’re working on?</h5> <p>Max is working on Stack Chat at Home (coming soon!), <a href="https://www.youtube.com/watch?v=TtmsV-xq0r0&list=PLIivdWyY5sqLvoPf2pMI2uIz1FLSfphCh"> BeyondCorp in a Bottle</a>, as well as <a href="https://ringfitadventure.nintendo.com">Ring Fit Adventure</a> and Just Dance video games.</p> <h5 id="sound-effect-attribution">Sound Effect Attribution</h5> <ul> <li>“Clarinet Multiphonics” by jfcharles of <a href="https://Freesound.org">Freesound.org</a></li> </ul>