While Amazon Web Services is considered the undisputed leader in public cloud services, the company continues to make improvements to its platform. Security is now the next step.
At its re:Invent 2017 customer showcase in Las Vegas this week, Amazon Web Services Inc. unveiled its new security service called GuardDuty, which it developed in cooperation with CrowdStrike and Proofpoint.
The GuardDuty service is enabled through the AWS Management Console. Once activated, the service can "immediately begin analyzing API calls and network activity across their accounts to establish a baseline of 'normal' account activity," according to Amazon.
However, AWS GuardDuty is not meant to be a standalone security product. Instead, it adds an extra layer of protection to the customer's existing security infrastructure. What Amazon is providing is an additional layer of scale, as well as the ability for security pros to help find account-based threats, which can be difficult to detect.
Keep up with the latest enterprise cloud news and insights. Sign up for the weekly Enterprise Cloud News newsletter.
In addition to GuardDuty, AWS rolled out a number of other features at the re:Invent show, including PrivateLink, a private network service that allows developers to create private endpoints to users. This adds another level of security by eliminating the need to expose data to the public Internet. (See Amazon Launches AWS PrivateLink for Private Cloud Connections.)
For additional information about AWS security and what it means for cloud customers, visit ECN's sister site Security Now.
Michelle, User Rank: Light Sabre 1/15/2018 | 1:26:24 PM
Re: How many layers of protection are necessary? Indeed, they are. I suspect researchers will find a number of hardware-based vulnerabilities in the future. Hardware wasn't always a target so there's plenty of opportunity to improve it going forward.
Michelle, User Rank: Light Sabre 1/8/2018 | 6:18:33 PM
Re: How many layers of protection are necessary? If nothing has come of the vulnerability yet, there's still time! I wonder how many bad guys are working on exploits now. Seems like the right move for the wrong side.
mhhfive, User Rank: Light Sabre 1/7/2018 | 9:11:29 PM
Re: How many layers of protection are necessary? Has anyone even developed a way of knowing whether or not Meltdown/Spectre attacks have been committed? Do these attacks leave traces -- besides the malware that would presumably be needed to execute them? Even then, could anyone be sure that the bad guys didn't just cover their tracks? Otoh, this attack vector seems to be relatively new to researchers who also presumably are ahead of at least some bad guys.
mhhfive, User Rank: Light Sabre 1/4/2018 | 10:00:51 PM
Re: How many layers of protection are necessary? And now with the recent security flaws (Meltdown/Spectre) with almost every cloud using Intel (and perhaps even AMD and ARM) -- it gets harder and harder to keep anything secure.
mhhfive, User Rank: Light Sabre 1/2/2018 | 2:50:29 PM
Re: How many layers of protection are necessary? This isn't just a problem for AWS.. it's just that AWS has such dominant marketshare that it seems like AWS is the only one with this problem. I'm pretty sure if other cloud services were used as widely, there would also be customers doing dumb things with default settings and releasing data inadvertantly.
Michelle, User Rank: Light Sabre 12/31/2017 | 10:57:49 PM
Re: How many layers of protection are necessary? This seems to solve a problem in AWS. I'm really curious to learn more about amazon's plans to save customers from themselves. Far too many large data dumps have come from poor data management within an AWS instance.
For the last several years, CIOs and IT professionals have been wrestling with two specific issues as they work toward a cloud-centric future: Agile IT and the rush toward digital transformation. While enterprises want to keep innovating, finding a starting point and knowing which projects to tackle first remain a major obstacle.
To get a better handle on Agile IT and digital transformation, Light Reading Managing Editor Scott Ferguson recently spoke to two experts in these fields: Dan Kearnan, senior director of marketing for cloud at SAP, and Roy Illsley, a distinguished analyst with Ovum.
From its roots in industrial farm machinery and other equipment, John Deere has always looked for a technological edge. About 20 years ago, it was GPS and then 4G LTE. Now it's turning its attention to AI, machine learning and IoT.