6 Things To Know For Securing Amazon Web Services
AWS is coming out with more new cloud security features.
![](https://eu-images.contentstack.com/v3/assets/blt6d90778a997de1cd/blt1e3c25010c6c37d0/64f0db5215ed1438ccad5e7f/Slide-1-CoverArt-AWS-Config.png?width=700&auto=webp&quality=80&disable=upscale)
Security consultant Andrew Krug at a special briefing last week at Black Hat USA in Las Vegas outlined several key security features in Amazon Web Services' AWS Config.
Forrester Research recently identified AWS as a leader in cloud security, citing AWS' capabilities in data center security, certifications, and network security. And as Gartner pointed in its recent Magic Quadrant for Cloud Infrastructure as a Service, because AWS has such a large installed base, it has set up partnerships with reputable providers that put it in a strong position to operate according to best practices.
Based on his talk at Black Hat last week and a follow-up interview with Dark Reading, Krug offers six reasons why AWS Config can deliver the security levels to instill confidence in the cloud.
Lambdas, which let companies pay only for the compute time they consume in AWS, offer some real potential here for automatic remediation of non-compliant items. Sys admins can chain config rules to events that execute lambda functions. For example, if a developer creates a security group with too-open access, the sys admin may elect to have a lambda automatically remediate that.
Krug and his partner Alex McCormack have released tools that can be run in AWS Lambda chained to CloudWatch events or Config rules. Check them out at: http://www.github.com/threatresponse
AWS Config also offers a feature in which if an attacker deletes an instance, the configuration items states persist. Access to this forensic evidence gives the company a better timeline of events.
Security consultant Andrew Krug at a special briefing last week at Black Hat USA in Las Vegas outlined several key security features in Amazon Web Services' AWS Config.
Forrester Research recently identified AWS as a leader in cloud security, citing AWS' capabilities in data center security, certifications, and network security. And as Gartner pointed in its recent Magic Quadrant for Cloud Infrastructure as a Service, because AWS has such a large installed base, it has set up partnerships with reputable providers that put it in a strong position to operate according to best practices.
Based on his talk at Black Hat last week and a follow-up interview with Dark Reading, Krug offers six reasons why AWS Config can deliver the security levels to instill confidence in the cloud.
Read more about:
Black Hat NewsAbout the Author(s)
You May Also Like
CISO Perspectives: How to make AI an Accelerator, Not a Blocker
August 20, 2024Securing Your Cloud Assets
August 27, 2024