August 21, 2009

Amazon AWS Security

One of the largest concerns enterprise customers have with moving to a shared infrastructure platform is security and the co-mingling of infrastructure components across customers (multi-tenancy).  I recently came across two very good security whitepapers on the Amazon Web Services platform.  The first is a Security Processes Overview (as of June, 2009) and the second is a document outlining considerations for deploying Health Insurance Portability and Accountability Act of 1996 (HIPAA) compliant applications on AWS.

Summary overview

Amazon Web Services: Overview of Security Processes:

  • Certifications and Accreditations
  • Secure Design Principles
  • Physical Security
  • Backups
  • Network Security:

Amazon AWS
Amazon Elastic Compute Cloud (Amazon EC2) Security
Amazon Simple Storage Service (Amazon S3) Security
Amazon SimpleDB Security
Amazon Simple Queue Service (Amazon SQS) Security
Amazon CloudFront Security
Amazon Elastic MapReduce Security

Creating HIPAA-Compliant Medical Data Applications with Amazon Web Services:

  • What is HIPAA and why is it important?
  • Privacy and Security Rules
  • Privacy Controls: Encrypting Data in the Cloud
  • Security Controls: High-Level Data Protection
  • AWS Security policies and controls
  • Auditing, Backup, and Disaster Recovery
Aug 21, 2009 12:56:52 PM

Verify your Comment

Previewing your Comment

Posted by:  | 

This is only a preview. Your comment has not yet been posted.

Working...
Your comment could not be posted. Error type:
Your comment has been saved. Comments are moderated and will not appear until approved by the author. Post another comment

The letters and numbers you entered did not match the image. Please try again.

As a final step before posting your comment, enter the letters and numbers you see in the image below. This prevents automated programs from posting comments.

Having trouble reading this image? View an alternate.

Working...

Leave a comment

Comments are moderated, and will not appear until the author has approved them.

(URLs automatically linked.)

Your Information

Name and email address are required. Email address will not be displayed with the comment.

NEXT POST
What will a future Cloud Computing ecosystem resemble? The ability for a company to tap into “externally owned and operated” computing capacity “just in time” with “pay as you go” billing and “elastic scale” are key features of the growing alternative computing approach known loosely as “Cloud Computing”....
PREVIOUS POST
KTG's Virtual Datacenter Services Vs. Amazon AWS KTG’s Virtual Datacenter Managed Service is a "virtual private infrastructure cloud" perfect for smaller organizations looking to get out of the IT infrastructure management business while gaining the uptime, performance, security and scalability traditionally available only from larger IT departments....

Byron Kennedy

I'm the founder and managing director of Kennedy Technology Group, LLC. I also provide virtualization and IT Operations management consulting to our clients.

The TypePad Team

Search

Recent Comments