Amazon Web Services Security

AWS – Security Aspect

Views: 155

Amazon Web Services (AWS) delivers a scalable cloud computing platform designed for high availability and dependability,providing the tools that enable you to run a wide range of applications. Helping to protect the confidentiality, integrity, and availability of your systems and data is of the utmost importance to AWS, as is maintaining your trust and confidence. The AWS infrastructure has been architected to be one of the most flexible and secure cloud computing environments available today. It is designed to provide an extremely scalable, highly reliable platform that enables customers to deploy applications and data quickly and securely.

All AWS customers benefit from a data center and network architecture built to satisfy the requirements of our most security-sensitive customers. This means that you get a resilient infrastructure, designed for high security, without the capital outlay and operational overhead of a traditional data center. AWS operates under a shared security responsibility model, where AWS is responsible for the security of the underlying cloud infrastructure and you are responsible for securing workloads you deploy in AWS. AWS and its partners offer a wide range of tools and features to help you to meet your security objectives. These tools mirror the familiar controls you deploy within your on-premises environments. AWS provides security-specific tools and features across network security, configuration management, access control and data security. In addition, AWS provides monitoring and logging tools to can provide full visibility into what is happening in your environment.
AWS provides several security capabilities and services to increase privacy and control network access. These include:
  • Built-in firewalls that allow you to create private networks within AWS, and control network access to your instances and subnets
  • Encryption in transit with TLS across all services
  • Connectivity options that enable private, or dedicated, connections from your office or on-premises environment
  • DDoS mitigation technologies as part of your auto-scaling or content delivery strategy
Data Encryption
AWS offers you the ability to add a layer of security to your data at rest in the cloud, providing scalable and efficient encryption features. These include
  • Data encryption capabilities available in AWS storage and database services, such as EBS, S3, Glacier, Oracle RDS, SQL Server RDS,and Redshift
  • Flexible key management options that allow you to choose whether to have AWS manage the encryption keys or maintain complete control over your keys
  • Dedicated, hardware-based cryptographic key storage options for customers to help satisfy compliance requirements.
Monitoring and Logging
AWS provides tools and features that enable you to seewhat’s happening in your AWS environment.These include
  • Deep visibility into API calls, including who, what,when, and from where calls were made
  • Log aggregation and options, streamlining investigations and compliance reporting
  • Alert notifications when specific events occur or thresholds are exceeded

AWS Marketplace

The AWS Marketplace offers hundreds of industry leading partner products that are equivalent, identical to, or integrate with existing controls in your on-premises environments, including anti-malware, web application firewalls, and intrusion protection.
Comments: 0

Your email address will not be published. Required fields are marked with *