Module 4 - Security
Engineering on AWS: Managing Keys and Secrets on AWS
Unit notes:
AWS KMS Cryptographic Details https://docs.aws.amazon.com/kms/latest/cryptographic-details/index.html
AWS KMS Developer Guide https://docs.aws.amazon.com/kms/latest/developerguide/index.html
AWS KMS in the AWS CLI Reference https://docs.aws.amazon.com/cli/latest/reference/kms/index.html
AWS Key Management Service https://aws.amazon.com/kms/
AWS Key
Management Service Developer Guide https://docs.aws.amazon.com/kms/latest/developerguide/overview.html
Manage your AWS Directory Service credentials using AWS Secrets
Manager https://aws.amazon.com/blogs/security/manage-your-aws-directory-service-credentials-using-aws-secrets-manager/
Protecting Data Using Encryption in the Amazon Simple Storage
Service User Guide https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingEncryption.html
What is the AWS Encryption SDK? https://docs.aws.amazon.com/encryption-sdk/latest/developer-guide/introduction.html
AWS Key Management Service Introduces New HMAC API https://aws.amazon.com/about-aws/whats-new/2022/04/aws-key-management-service-hmac-api
How AWS Services Use AWS KMS https://docs.aws.amazon.com/kms/latest/developerguide/service-integration.html
Importing key material in AWS KMS keys https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys.html
How Multi-Region Keys Work https://docs.aws.amazon.com/kms/latest/developerguide/multi-region-keys-overview.html
AWS CloudHSM Clusters https://docs.aws.amazon.com/kms/latest/developerguide/multi-region-keys-overview.html
Custom Key Stores https://docs.aws.amazon.com/kms/latest/developerguide/custom-key-store-overview.html
Are KMS Custom Key Stores Right for You? https://aws.amazon.com/blogs/security/are-kms-custom-key-stores-right-for-you
AWS Secrets Manager https://aws.amazon.com/secrets-manager/
AWS
Secrets Manager Documentation https://docs.aws.amazon.com/secretsmanager/latest/userguide/intro.html
How to Securely Provide Database Credentials to Lambda Functions
By Using AWS Secrets Manager https://aws.amazon.com/blogs/security/how-to-securely-provide-database-credentials-to-lambda-functions-by-using-aws-secrets-manager
Get Started With AWS Secrets Manager https://docs.aws.amazon.com/secretsmanager/latest/userguide/terms-concepts.html
Example: Permission to Retrieve Secret Values https://docs.aws.amazon.com/secretsmanager/latest/userguide/auth-and-access_examples.html#auth-and-access_examples_read
Managing Parameter Tiers https://docs.aws.amazon.com/systems-manager/latest/userguide/parameter-store-advanced-parameters.html
Trainings:
Introduction to AWS Key Management Service https://explore.skillbuilder.aws/learn/course/internal/view/elearning/897/introduction-to-aws-key-management-service
Securing and Protecting Your Data in Amazon Simple Storage Service
(Amazon S3) https://explore.skillbuilder.aws/learn/course/internal/view/elearning/4892/securing-and-protecting-your-data-in-amazon-simple-storage-service-amazon-s3
Understanding Amazon EBS Volume Encryption https://explore.skillbuilder.aws/learn/course/internal/view/elearning/4211/understanding-amazon-ebs-volume-encryption
Introduction to Data Encryption https://explore.skillbuilder.aws/learn/course/internal/view/elearning/196/introduction-to-data-encryption
Introduction to Amazon Certificate Manager Private Certificate
Authority https://explore.skillbuilder.aws/learn/course/internal/view/elearning/190/introduction-to-amazon-certificate-manager-private-certificate-authority
Videos:
AWS Key Management Service: Multi-Region Keys https://www.youtube.com/watch?v=igikgFCd48g
Introducing AWS KMS external keys (AWS re:Invent 2022) https://www.youtube.com/watch?v=prj6xgpHFTo
Deep Dive
into Leveraging AWS Secrets Manager with Cross-Account AWS KMS
Keys https://www.youtube.com/watch?v=Xp3KgH8s23g
AWS data protection: Using locks, keys, signatures, and
certificates (AWS re:Invent 2022) https://www.youtube.com/watch?v=lD34wbc7KNA
AWS Secrets Manager: Multi-Region Secret Replication https://www.youtube.com/watch?v=GPab-mc-8nU
AWS re:Inforce 2019: Best Practices for Privileged Access &
Secrets Management in the Cloud https://www.youtube.com/watch?v=TFMgT6NxKEk
AWS re:Inforce 2019: How Encryption Works in AWS https://www.youtube.com/watch?v=plv7PQZICCM
AWS re:Inforce 2019: Encrypting Everything with AWS https://www.youtube.com/watch?v=oqHLLbOoxDg
AWS Security Webinar: The Key to Effective Cloud Encryption https://www.youtube.com/watch?v=78qFK-r7WBI
AWS re:Inforce 2019: Achieving Security Goals with AWS CloudHSM https://www.youtube.com/watch?v=_gezaWmwzYY
What is AWS Certificate Manager https://www.youtube.com/watch?v=Nk77te-cksQ
ACM Private CA - Creating a New Private Certificate Authority https://www.youtube.com/watch?v=pKymN_ICpv8
Back to Basics: Secrets Management https://www.youtube.com/watch?v=6oPHw7rT9OI
AWS re:Invent 2018: Best Practices for Managing, Retrieving, &
Rotating Secrets at Scale https://www.youtube.com/watch?v=qoxxRlwJKZ4
Previous
Top
Next