Speaker, Meetup Organiser Trying to make cloud a safer space J Versent – 2nd in the list of fastest growing startup in Australia for 2017 (source: BRW Australia 2017 edition) AWS Security Competency Partner
Password • API Keys (App only Access Token) • API Keys (User + App Access Token) • OS(Windows/Linux) Password • Storage Account Keys • Private keys for SSL certificates What are the kind of creds? (Azure)
tools to eliminate any secrets in repositories 3. Enable Federation between AWS and your Organisation 4. Short Term API Keys Linkedin: https://au.linkedin.com/in/ashishrajan Twitter: @hashishrajan
region except your own region (us-east is an exception) 2. MFA for the use of API keys 3. Where possible enable Federation for centralised User Management 4. IAM Roles should be defined with the least privilege in mind 5. Where possible, when using IAM Instance Profile – add a conditional statement for SourceIP to prevent possible SSRF/XXE attack vectors 6. Define a Process for compromised creds/Keys - IAM Users and Federated Users and 3rd Party Providers
but an IAM User is created 2. Root user logs into the Console 3. Root user creates an Access Keys 4. Multiple Failed login attempts by a user 5. Multiple API calls (>5) to non-authorised services Linkedin: https://au.linkedin.com/in/ashishrajan Twitter: @hashishrajan