Issue #70
Monday · May 16, 2022
🥗 AWS security blogs
- Build a strong identity foundation that uses your existing on-premises Active Directory — This blog post outlines how to use your existing Microsoft Active Directory (AD) to reliably authenticate access to your Amazon Web Services (AWS) accounts, infrastructure running on AWS, and third-party applications. The architecture we describe is designed to be highly available and extends access to your existing AD to AWS, …
- Getting started with AWS SSO delegated administration — Recently, AWS launched the ability to delegate administration of AWS Single Sign-On (AWS SSO) in your AWS Organizations organization to a member account (an account other than the management account). This post will show you a practical approach to using this new feature. For the documentation for this feature, see …
- Establishing a data perimeter on AWS — For your sensitive data on AWS, you should implement security controls, including identity and access management, infrastructure security, and data protection. Amazon Web Services (AWS) recommends that you set up multiple accounts as your workloads grow to isolate applications and data that have specific security requirements. AWS tools can help …
🍛 Reddit threads on r/aws
- Amazon VPC now supports multiple IPv6 CIDR blocks
- AWS Lambda adds support for Node.js 16
- My First Rust Lambda to DynamoDB with returned JSON through API Gateway — Update to the post: A few users have asked for the code to this project. So here it is. Reminder, nothing is optimized - I'm still learning and haven't gotten to that point yet. And yes, a few items are hardcoded in this version as well. There are a couple …
- AWS PrivateLink announces support for IPv6
- Abuse Notice for Nessus Kali Penetration Testing from AWS — I am working for a penetration testing company. We have Nessus and Kali installed in AWS. We use them to perform penetration tests against our client targets outside of AWS. We keep getting abuse notices from Amazon, which is hampering our business performance. Is there a way to be a …
📌 Newsletters
📌 r/netsec
📌 r/cloudsecurity
- Uml Use Cases Cloud security and management — hey guys I'm new to this and I'm sorry if its the wrong sub. can you help find papers about UML use cases diagrams saas application's security? I'm in dev and I'm doing a paper about it. best example that I have found is outdated : exemple
📌 "AWS Security" on Google News
🧁 IAM permission changes
- ram: 2 updated actions — 2 updated actions: CreateResourceShare (dependents), EnableSharingWithAwsOrganization (dependents)
- appconfig: 1 updated condition, 1 updated action — 1 updated condition: aws:TagKeys (type); 1 updated action: StartDeployment (conditions)
- airflow: 1 updated condition — 1 updated condition: aws:TagKeys (type)
🍪 API changes
- Amazon Managed Grafana - 2 new 2 updated methods — This release adds APIs for creating and deleting API keys in an Amazon Managed Grafana workspace.
- Amazon Elastic Compute Cloud - 2 updated methods — This release introduces a target type Gateway Load Balancer Endpoint for mirrored traffic. Customers can now specify GatewayLoadBalancerEndpoint option during the creation of a traffic mirror target.
- AWSKendraFrontendService - 4 updated methods — Amazon Kendra now provides a data source connector for Jira. For more information, see https://docs.aws.amazon.com/kendra/latest/dg/data-source-jira.html
- AWS Lambda - 13 updated methods — Lambda releases NodeJs 16 managed runtime to be available in all commercial regions.
