RSS

Tag Archives: IAM

Amazon Security Services, Part One: IAM

Episode 77

As promised in the last episode, we will start with Amazon Web Services security today. As this is large topic, I’ve decided to split it into two articles in a similar way I did with AWS networking. In the first part, we will cover the fundamental service from the security group: Identity and Access Management and all concepts related to it. In the second part, we will look into other security services and AWS security in general.

d535fd18fc4a69c71fbbdc4017569216.jpg

Identity and Access Management is a service that let us control how people and machines access and operate on AWS resources. It’s used to facilitate authentication and authorization of different types of principals, organize them in groups and assign polices that allow flexible and fine grained regulation over who can do what and when. Not surprisingly, IAM can be controlled via AWS console, CLI or SDK.

Principals

First important concept in IAM is the Principal. It’s an entity that is allowed to interact with AWS resources, that may be permanent or temporary and it might be human being or an application. Principal related concepts include: Read the rest of this entry »

 
2 Comments

Posted by on July 6, 2017 in AWS, Cloud, Technology

 

Tags: , , ,

Amazon Web Services Jungle

Episode 65

In the previous episode, we introduced Amazon Web Services, talked a little about history, concepts, notions and briefly about competition.  We looked at three categories of services which are the basic building blocks of software systems, namely Compute, Storage and Network. Today we will continue the walk through the AWS jungle.

b4f3d4e2d87035718e79599742941f4c

Categories and services are changing rapidly. When I started the previous article few weeks ago, there were 17 categories, now there is one more. Let’s see what’s in there.

Security, Identity and Compliance should be considered one of core aspects of any application environment, even if the application itself has no business notion of identified users. More on the category in Episode 77 and 78. Read the rest of this entry »

 
2 Comments

Posted by on April 13, 2017 in AWS, Cloud, Technology

 

Tags: , , ,