更新时间:2021-07-02 15:44:54
coverpage
Title Page
Copyright
Mastering AWS Security
Credits
About the Author
About the Reviewers
www.PacktPub.com
why subscribe
Customer Feedback
Preface
What this book covers
What you need for this book
Who this book is for
Conventions
Readers feedback
Customer support
Downloading the color images of this book
Errata
Piracy
Questions
Overview of Security in AWS
Chapter overview
AWS shared security responsibility model
Shared responsibility model for infrastructure services
Shared responsibility model for container services
Shared responsibility model for abstracted services
AWS Security responsibilities
Physical and environmental security
Storage device decommissioning
Business continuity management
Communication
Network security
Secure network architecture
Secure access points
Transmission protection
Network monitoring and protection
AWS access
Credentials policy
Customer security responsibilities
AWS account security features
AWS account
AWS credentials
Individual user accounts
Secure HTTPS access points
Security logs
AWS Trusted Advisor security checks
AWS Config security checks
AWS Security services
AWS Identity and Access Management
AWS Virtual Private Cloud
AWS Key Management System (KMS)
AWS Shield
AWS Web Application Firewall (WAF)
AWS CloudTrail
AWS CloudWatch
AWS Config
AWS Artifact
Penetration testing
AWS Security resources
AWS documentation
AWS whitepapers
AWS case studies
AWS YouTube channel
AWS blogs
AWS Partner Network
AWS Marketplace
Summary
IAM features and tools
Security
AWS account shared access
Granular permissions
Identity Federation
Temporary credentials
AWS Management Console
AWS command line tools
AWS SDKs
IAM HTTPS API
IAM Authentication
IAM user
IAM groups
IAM roles
AWS service role
AWS SAML role
Role for cross-account access
Role for Web Identity Provider
Identity Provider and Federation
Delegation
Temporary security credentials
AWS Security Token Service
The account root user
IAM Authorization
Permissions
Policy
Statement
Effect
Principal
Action
