Search icon CANCEL
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Conferences
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Mastering AWS Security

You're reading from   Mastering AWS Security Strengthen your cloud environment using AWS security features coupled with proven strategies

Arrow left icon
Product type Paperback
Published in Apr 2024
Publisher Packt
ISBN-13 9781805125440
Length 370 pages
Edition 2nd Edition
Tools
Arrow right icon
Author (1):
Arrow left icon
Laurent Mathieu Laurent Mathieu
Author Profile Icon Laurent Mathieu
Laurent Mathieu
Arrow right icon
View More author details
Toc

Table of Contents (20) Chapters Close

Preface 1. Part 1: Foundations of AWS Security FREE CHAPTER
2. Chapter 1: Introduction to AWS Security Concepts and the Shared Responsibility Model 3. Chapter 2: Infrastructure Security – Keeping Your VPC secure 4. Chapter 3: Identity and Access Management – Securing Users, Roles, and Policies 5. Chapter 4: Data Protection – Encryption, Key Management, and Data Storage Best Practices 6. Chapter 5: Introduction to AWS Security Services 7. Part 2: Architecting and Deploying Secure AWS Environments
8. Chapter 6: Designing Secure Microservices Architectures in AWS 9. Chapter 7: Implementing Security for Serverless Deployments 10. Chapter 8: Secure Design Patterns for Multi-Tenancy in Shared Environments 11. Chapter 9: Automate Everything to Build Immutable and Ephemeral Resources 12. Part 3: Monitoring, Automation and Continuous Improvement
13. Chapter 10: Advanced Logging, Auditing, and Monitoring in AWS 14. Chapter 11: Security Compliance with AWS Config, AWS Security Hub, and Automated Remediation 15. Chapter 12: DevSecOps – Integrating Security into CI/CD Pipelines 16. Chapter 13: Keeping Up with Evolving AWS Security Best Practices and Threat Landscape 17. Chapter 14: Closing Note 18. Index 19. Other Books You May Enjoy

Answers

Here are the answers to this chapter’s questions:

  1. The AWS Encryption SDK is a client-side library that’s designed to make encryption more accessible and manageable for developers. It enhances data protection, both at rest and in transit, and can be used across various AWS services and even outside the AWS environment. It offers features such as data key caching, a suite of robust encryption algorithms, and message protection, making it developer-friendly and cost-efficient.
  2. Key rotation is crucial for maintaining robust cryptography. KMS supports automatic key rotation for CMKs, where new key material is generated every year. You also have the option to manually rotate keys. When a key is rotated, the key material changes, but the key ID remains the same.
  3. RDS supports volume encryption using keys managed through KMS. It also allows for field-level encryption either through application-level logic or native TDE features provided by certain database...
lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at AU $24.99/month. Cancel anytime