Data Encryption is still a best available mechanism when its about securing highly critical data stored in the cloud or on-premises. Organisational policies, or industry or government regulations, might require the use of encryption at rest to protect your data. Server side encryption with AWS Key Management Service (KMS) is a highly available, scalable and … Continue reading Introduction to AWS Key Management Service (KMS)
Amazon AWS
AWS Virtual Private Cloud (VPC)
Amazon Virtual Private Cloud (VPC) is the fundamental building block for your private network in AWS. VPC allows many types of AWS resources, such as EC2 instances, to communicate securely with each other, with the Internet, and with local networks. This virtual network closely resembles a traditional network that you'd operate in your own data … Continue reading AWS Virtual Private Cloud (VPC)
AWS DynamoDB Capacity Management
Read/Write Capacity Mode: When you provision Read Capacity Unit (RCU) and Write Capacity Unit (WCU) for Dynamo DB table, Always choose an option carefully after analysing the consumption as it may have a huge impact on the billing. The read/write capacity mode controls how you are charged for read and write throughput and how you … Continue reading AWS DynamoDB Capacity Management
AWS EC2 instance metadata and userdata
Instance Metadata: Instance metadata is data about your instance that you can use to configure or manage the running instance Quick background: Instance metadata is data about an instance that can be used to manage the instance.Can be viewed by anyone who has access to the instance.Must not be used to store sensitive information such as … Continue reading AWS EC2 instance metadata and userdata
AWS S3 Access Management
In Amazon AWS S3, access type is private by default for buckets and objects resources which makes the access control much simple and secure as it allows only granular access to these resources for a role. Only the resource owner of AWS account, can access the resource. The resource owner can optionally grant access permissions to … Continue reading AWS S3 Access Management