Chapter 6. Designing for and Implementing Security
In this chapter, we will introduce some key design principles and approaches to achieving security in your applications deployed on the AWS cloud. As an enterprise or a startup, you want to ensure your mission critical applications and data are secure while serving your customers. The approaches in this chapter will address security across the layers of your application architecture including security aspects of key infrastructural components. In order to address security requirements, we will use the AWS services including IAM, CloudTrail, and CloudWatch. We will also show you how to implement security for our sample application.
In this chapter, we will cover the following topics:
- Defining security objectives
- Understanding security responsibilities
- Best practices in implementing AWS security
- Implementing identity lifecycle management
- Tracking AWS API activity using CloudTrail
- Logging for security analysis
- Using third-party security...