Think security
- Selvyn Wright
Cloud security is a shared responsibility between the Cloud Provider and the Cloud Customer
The customer is still responsible for a lot the security implementation
A lot of people new to cloud misunderstand this second point
Cloud Provider (AWS) Responsibilities | Cloud Customer Responsibilities |
|---|---|
Physical security | Network-level security |
Infrastructure | Application-level security |
Equipment | Data-level security |
Seperation from other Cutsomers | Secure transmission of data (HTTPS over HTTP) |
Prodive Identity Access-leve controls | Use Identity Access-level controls, to control who has access the AWS services |
| Use up to date access keys to access AWS APIs, they can be passed into the application during bootstrapping, but stored in a secure AWS data location like an S3 bucket or the AWS credentials file, see here for more information |
| User Security Groups which like firewalls to AWS resources |