“Develop success from failures. Discouragement and failure are two of the surest stepping stones to success.” — Dale Carnegie
** #50DaysOfDiscovery :- Day 14 **
Hello Linkedin Family,
Today, I learned about how to #secure your #data in #AWS environment.
First of all, you should know about the "Shared Responsibility Model", the shared responsibility model describes what AWS is responsible for and what you as a user/customer , is responsible for.
If I have to explain Shared Responsibility Model in Two Lines, they would be :
- AWS is responsible for "Security OF the Cloud"
- The user is responsible for "Security IN the Cloud"
The AWS manages, maintains ans secures all the underlying hardware that is required to run the cloud, which includes securing Data Centers (Regions, AZ , Edge Locations)
As a User, we are responsible for configuration of all the applicaation and services.
Let's talk about Data Security in AWS, for protecting your data you should know when and how to secure your data
1. Protecting Data at Rest
2. Protecting Data in Transit
From what should the data be protected at rest from:
- Accidental information disclosure
- Dataintegrity compromised
- Accidental deletion
- Availability
From what should the data be protected in transit from:
- Accidental information disclosure
- Compromised dataintegrity
- Identity spoofing(man-in-the-middle)
Security Best Practices for S3:
- Consider encryption of data at rest
- Enforce encryption of data in transit
- Consider using S3 Object Lock
- Enable S3 Versioning
- Consider using S3 Cross-Region Replication
- Consider using VPC endpoints for Amazon S3 access
- Use managed AWS security services to monitor data security
https://lnkd.in/dE5utSJD
#aws #security #s3 #object #objectstorage #storage #networking #Authentication #Authorization #linux #50DaysOfDiscovery #console #shell #scripting #files #programming
Owner at ANDREW KABATCHNICK, CPA
7moAmazing