AWS Account Security Features

-

AWS Credentials

AWS uses several types of credentials for authentication. These include passwords, cryptographic keys, digital signatures, and certificates. AWS also provides the option of requiring multi-factor authentication (MFA) to log into your AWS account or IAM user accounts.

Following are the various AWS credentials and their uses.

Passwords: Password is used to log into AWS account, IAM account, discussion forum, and the support center. It can be created during signup to the AWS account for the root admin account. All other user account passwords will be specified by an administrator with the option to allow to change on the first time used by IAM user. Passwords can be changed any time using the security credentials page.

AWS Multi-Factor Authentication (MFA): AWS Multi-Factor Authentication (MFA) is additional optional feature security for accessing AWS services. It requires a six-digit single-use code along with a user name and password to access AWS Account settings or AWS services and resources. This is called multi-factor authentication because more than one authentication factor is checked before access is granted: a password (something you know) and the precise code from your authentication device. it can be enabled using an MFA device for an AWS Account as well as for the users that have created using AWS IAM. AWS MFA supports the use of both hardware tokens and virtual MFA devices. Virtual MFA devices use the same protocols as the physical MFA devices but can run on any mobile hardware device, including a smartphone. A virtual MFA device uses a software application that generates six-digit authentication codes that are compatible with the Time-Based One-Time Password (TOTP) standard. Most virtual MFA applications allow hosting more than one virtual MFA device, which makes them more convenient than hardware MFA devices. However, you should be Amazon Web Services: You can also enforce MFA authentication for AWS service APIs in order to provide an extra layer of protection over powerful or privileged actions such as terminating Amazon EC2 instances or reading sensitive data stored in Amazon S3. You do this by adding an MFA-authentication requirement to an IAM access policy. You can attach these access policies to IAM users, IAM groups, or resources that support Access Control Lists (ACLs) like Amazon S3 buckets, SQS queues, and SNS topics. It is easy to obtain hardware tokens from a participating third-party provider or virtual MFA applications from an AppStore and to set it up for use via the AWS website. 

Access Keys: Access key is a digitally signed request which must be included to access AWS APIs (using the AWS SDK, CLI, or REST/Query APIs) to verify the identity of the requestor. Aj AWS users calculate the digital signature using a cryptographic hash function. The input to the hash function, in this case, includes the text of the request and secret access key. It will be calculated automatically by AWS on using any of the AWS SDKs to generate requests otherwise, you can have your application calculate it and include it in your REST or Query requests.  

Comments

Post a Comment

Popular posts from this blog

Why to build a mobile app for FMCG

-
Image
  Along with many others, the FMCG i.e. Fast-Moving Consumer Goods industry is being revolutionized by newly rolled out devices and technologies. The possibilities for building retail and POS (Point of Sale) functions into mobile applications are limitless and are made possible by a variety of emerging and established technologies. How will having a mobile app will help the fast-moving consumer food market? The usage of Mobile has changed the way people live their lives. The smartphone is a trusted guide for everyone. A recent survey indicated that 88% of respondents preferred their smartphone to be on their side and revealed that e-commerce enabled mobile devices to enable FMCG market brands to engage with shoppers. With more smartphones than people across the world today, a mobile app is clearly the most convenient means for the FMCG market to engage with their shoppers. Importance of a mobile app in the FMCG market: Mobile-enabled data searchers who try to access whichever brand...
Read more

Salesforce Development Company in India and US

-
Pletra Technologies is one of the leading Salesforce Development companies in the USA and Indian market. We’ve achieved over 50+ success stories for over 3 years with our Salesforce certified developers and architects, which has led to a loyal customer base. We ensure the delivery of best-fit Salesforce.com solutions to our clients by following a methodical implementation process. Why Choose Pletratech As Your Salesforce Consulting Service Provider? Our primary focus is helping businesses around the world with the best Salesforce development services to augment their business operations and sky-rocket their sales. Get in touch with us to find out what makes Pletra Technologies your reliable Salesforce consulting service provider. Expertise in CRM Consulting Dedicated Salesforce Consultants Deep industry knowledge in retail, IT, manufacturing, healthcare, banking, telecoms, education, finance, and many more. Customer-centric strategy and technical guidance. Optimized ...
Read more

Web Development - PletraTech Services

-
Image
  Web Development We, Pletra Technologies offer top-notch Website Development services in order to expand your brands and services across the world-wide. Our main aim is to deliver high-quality services as per the requirements of our highly venerated and precious clienteles irrespective of the size of their firms. Over years of experience, our highly skilled and trained team members always deliver unique and satisfying work in various platforms utilizing the latest open source as well as closed source technologies from Java to PHP, from .Net to Graphics Animation, and a lot more. All our knowledgeable team members are passionate enough to deliver interactive, responsive, and feature-rich websites to enhance your image in the highly competitive market throughout the world. From our agency, you always receive quality services, even before your estimated time at the lowest possible rates. We also offer round the clock support during as well as after your project completion, if require...
Read more