Enhance Application Security on AWS
What is AWS:
AWS is a leading Public Cloud Platform and world’s most comprehensive and widely used public cloud platform. It has customer base if millions and organizations of every type and size use AWS for some or all of their requirements. AWS provides on demand services of technology via the internet and their wide variety of services allows user to implement or create almost every technology stack on cloud. AWS has variety of pricing models such as pay as you go, on-demand and many more to enable users to deploy almost any kind of application on cloud. Pay as you go pricing model allows users to avoid any kind of upfront cost to start their business and focus more on their core business expense.
Security Services on AWS:
AWS offers various services and some of them are dedicated to enhancing Application Security. We will start with Web Application Firewall which acts as firewall to incoming traffic or requests. AWS WAF is a security service offering from AWS which helps you to implement rules for filtering incoming web requests. AWS Top 10 OWASP rules are most common used rules while implementing WAF which helps you to mitigate OWASP’s top 10 Web Application Vulnerabilities.
- – Injection.
- – Broken Authentication and Session Management.
- – Cross-Site Scripting (XSS).
- – Broken Access Control.
- – Security Misconfiguration.
- – Sensitive Data Exposure.
- – Insufficient Attack Protection.
- – Cross-Site Request Forgery.
- – Using Components with Known Vulnerabilities.
- – Under protected APIs.
Another service offering by AWS goes by the name AWS Guard Duty which is a threat detection service and monitors your AWS account and workloads on a regular basis. AWS Guard Duty reduces time to analyze event log data for potential threats as the service uses machine learning algorithms, anomaly detection and integrated threat detection to identify and prioritize potential threats. AWS Guard duty makes sure your AWS account and network is safe by analyzing tons of events across various AWS Data Sources like AWS CloudTrail event logs, AWS VPC flow logs etc.<Br>
AWS X-Ray is used to trace user requests as it travels through your entire application. It can be integrated with AWS EC2, ECS, lambda and other services by integrated AWS X-Ray SDK in your application Code. AWS X-Ray helps you to analyze and debug application issues and understand how your application and related services are performing. It helps you to identify and troubleshoot root cause of performance related issues and errors in your application.
AWS Shield and Shield Advance are managed services offering from AWS which helps in mitigating Distributed Denial Of Service attacks on your application. AWS Shield Standard protection is a basic service which comes free and can be used with Amazon Cloudfront to safeguard your application against all known infrastructure layer attacks. AWS Shield Advance helps you to mitigate large DDOS attacks and gives you almost real time visibility into attacks.
AWS provides various services for enhancing security of your workloads running on AWS Infrastructure however it is important for solution architects to use design infra solution keeping in mind relevant services as per use case.