Cybersecurity is challenging enough, but when one of the main tools you use to secure your resources is in a hard to interpret format, such as YAML or JSON, it makes it that much more challenging.
While these two formats are easier to read than code, its still far to easy to misinterpret. The consequences can be serious!
As you probably know, the root of creating effective cybersecurity within Amazon's AWS is the use of IAM - Identity and Access Management.
What is IAM? Basically its the tool you use to create users, roles and policies to control which users or roles have access to your resources, and under what conditions the access is granted or denied.
It basically forms the core plank in a sound AWS security strategy. It's the equivalent of Active Directory in a corporate network, at least the user/groups/roles component of Active Directory.
That's why I'm pleased to share that Amazon AWS has created a tool that displays IAM policies in a very clear and easy to read format - the Policy Summary tool, and it looks like this...
 |
| A portion of an IAM Policy Template Summary |
Now you don't have to be a YAML or JSON expert to understand a policy, which can be created by you, or you can use one of AWS' preconfigured policy documents, and tweak it as you see fit depending on your custom needs.
To see policy summaries in your AWS account, sign in to the IAM console and navigate to any managed policy on the Policies page of the IAM console or the Permissions tab on a user’s page.
Below is a link to an article that discusses the Policy Summary tool that is available within AWS.
https://aws.amazon.com/blogs/security/move-over-json-policy-summaries-make-understanding-iam-policies-easier/
If you would like help or guidance on implementing a sound IAM strategy for your organization, don't hesitate to reach out via email or LinkedInhttps://www.linkedin.com/in/ryanaharris
Enjoy!
No comments:
Post a Comment