Trend Micro Cloud One
TM
Support
Open Console
English
日本語
Support
Open Console
Home
File Storage Security
What's new
Table of contents
About File Storage Security
What is File Storage Security?
Scan engine
How it works
How long do scans take?
How does the solution scale?
Stack contents
Internet connections in a scan flow
What's supported
What's supported in AWS
What AWS services are supported?
What Amazon regions are supported?
What's supported in Azure
What Azure services are supported?
What Azure regions are supported?
What's supported in GCP
What GCP services are supported?
What GCP regions are supported?
Pricing
Pricing and subscription options
Annual subscription
How do I find a list of protected buckets?
Consumption-based subscription
To subscribe
Estimating consumption-based cost
Estimate infrastructure costs
AWS
Azure
How to estimate S3 PutObject events
Create Athena table to query logs
Query PutObject logs in Athena
Architecture and flow
AWS architecture and flow
Architecture
Components
Azure architecture and flow
Architecture
Components
GCP architecture and flow
Architecture
Components
Performance and scaling
Performance and scaling on AWS
Performance metrics (scan times)
How are bursts in load handled? How do I estimate the scan time and how much concurrency is used when a burst of scanning occurs?
How many files can be scanned concurrently?
Performance across multiple regions
How can performance be improved?
Performance and scaling on Azure
Performance metrics (scan times)
How are bursts in load handled?
Performance and scaling on GCP
Performance metrics (scan times)
Performance metrics (volume scan times)
Get started
Setup options
Architectural options
Configuration options
Deploy with AWS
Permissions for deployment
Sign in
Deploy the all-in-one stack
Configure ARNs
Generate your first detection
Deploy with Azure
Permissions for deployment
Sign in
Deploy the all-in-one stack
Configure Azure stack
Generate your first detection
Deploy with GCP
Permissions for deployment
Sign in
Deploy the all-in-one stack
Generate your first detection
User guides
Add stacks
Add AWS stacks
Add AWS stacks
How many stacks should I add?
Where can I add stacks?
Add an all-in-one stack
Add a scanner stack
Add a storage stack
How do I find a list of protected buckets?
Customizing stacks
Deploy in VPC
Add Azure stacks
Add Azure stacks
How many stacks should I add?
Where can I add stacks?
Add an all-in-one stack
Add a scanner stack
Add a storage stack
Deploy in Azure VNet
Introduction
Prerequisites
Deploy the Azure Stacks
Configure the Azure Stacks
Conclusion
Add GCP stacks
Add GCP stacks
How many stacks should I add?
Where can I add stacks?
How Terraform deploys the stacks under your GCP project
Add an all-in-one stack
Add a scanner stack
Add a storage stack
Convert the GCP stacks from Deployment Manager to Terraform
The steps of converting the GCP stacks from GCP Deployment Manager to Terraform
Scan existing files
Scan existing files in the 'S3 bucket to scan'
Full scan and scheduled scan
Scan before reading the file (Scan on getObject request)
Monitor scan results
View scan results on the Scan Activity page
Scan History chart
Malicious Events table
Scan Error Events table
Scan result format
Examples
AWS
S3 environment
Scan a file
View tags
CloudWatch
View scan results in CloudWatch
Search for scan results in CloudWatch
Monitor for malicious files using CloudWatch
SNS
Storage Stack DLQ
Prerequisite
Handle scan errors
Re-scan the file manually
Re-scan the file by Python script
Get scan error file list from scan logs
Handling "network errors"
Azure
Storage account environment
Scan a file
View the metadata and index tags
Application insights
Search for scan results in Application Insights
Monitor for malicious files using Application Insights
Service bus topic
Monitor errors
Blob event grid system topic dead lettering
Scanner queue dead lettering
Scan result topic dead lettering
GCP
Monitor scan results in GCP
Pub/Sub Topic
Scanner Logs
Add post-scan actions
Add post-scan actions in AWS
Promote or quarantine
Conformity custom check
Add post-scan actions in Azure
Promote or quarantine
Notification
Add post-scan actions in GCP
Promote or quarantine
Change the storage associated with a stack
Change the bucket associated with a stack
Updates
AWS
Update stacks
Before you begin
Update a stack
Update components
Automatic updates
The steps of manual update Lambda code
Azure
Update stacks
Before you begin
Update a stack
Update components
Automatic updates
GCP
Update stacks
Before you begin
Update a stack
Update components
Update scanner function
Update pattern updater function
Update bucket listener function
Update post action tag function
Delete stacks
Delete AWS stacks
Delete Azure stacks
Alternate method of deleting a stack
Delete GCP stacks
Delete GCP (Deployment Manager) Stacks
Delete GCP (Terraform) Stacks
Resource prefixes
Advanced
s3:ObjectCreated:* event in use
1. s3:ObjectCreated:* event partially in use
2. s3:ObjectCreated:* event occupied for the entire bucket
AWS permissions control
Control permissions with permissions boundary
Control permissions with additional policies
GCP bucket location suggestion
Regional
Dual-region
Multi-region
Recap
Account scanner stacks
AWS
Deploy Account scanner stacks
Architecture
Set up cross region or cross account scans
Use the AWS web management console
Use the AWS CLI
Enable server-side encryption
Delete account scanner stacks
In File Storage Security
In AWS
Automation
Sample code plugins
Deployment
Scan triggers
Post-scan actions
API reference
Create an API Key
For Trend Micro Cloud One API Key
For Legacy API Key
Deploy stacks
Deploy stacks in AWS
Obtain an external ID
Create CloudFormation stacks in AWS
Prerequisites
Using template link
Using AWS CLI
Add stacks to File Storage Security using the API
Recommendation
Prerequisites
Deploy an all-in-one stack using the API
Deploy a scanner stack using the API
Deploy an account scanner stack using the API
Deploy a storage stack using the API
Deploy stacks in Azure
Prepare a Service Principal
Create stacks in Azure
Prerequisites
Using template link
Using Azure CLI
Add stacks to File Storage Security using the API
Recommendation
Prerequisites
Deploy an all-in-one stack using the API
Deploy a scanner stack using the API
Deploy a storage stack using the API
Deploy stacks in GCP
Create stacks in GCP
Create a Cloud Account for GCP
Prerequisites
Using Terraform with gcloud CLI
Add stacks to File Storage Security using the API
Recommendation
Prerequisites
Deploy an all-in-one stack using the API
Deploy a scanner stack using the API
Deploy a storage stack using the API
List file storages
Prerequisite
Sample response
FAQs and troubleshooting
FAQs
Architecture
Performance
Deployment
Scanner
Post Scan actions
Updates and Upgrades
Troubleshoot and monitor health
Create a support ticket
Access log events
Access logs
Scan detail code
Data collection disclosure
What's new
Previous
Data collection disclosure
keyboard_arrow_up