Category: Security, Identity, & Compliance

The AWS team works non-stop to improve the security of our services. As you can see from the timeline below, many of our recent releases have made it easier for you to secure your cloud resources. The new AWS Security Blog is your one-stop shop for best practices, how-to guides, customer stories, and more. Like […]

Back in the early days of AWS, I would often receive questions that boiled down to “This sounds really interesting, but what about security?” We created the AWS Security & Compliance Center to publish information about the various reports, certifications, and independent attestations that we’ve earned and to provide you with additional information about the […]

As you can tell by looking at the AWS Security and Compliance Center, we take security seriously. You can find information about our certifications and accreditations in the center, along with links to four security white papers. I would also like to recommend a new AWS video to you. In the video, AWS VP and […]

We have updated the AWS Security White Paper and we’ve created a new Risk and Compliance White Paper.  Both are available now. The AWS Security White Paper describes our physical and operational security principles and practices. It includes a description of the shared responsibility model, a summary of our control environment, a review of secure […]

If your application needs to process, store, or transmit credit card data, you are probably familiar with the Payment Card Industry Data Security Standard, otherwise known as PCI DSS. This standard specifies best practices and security controls needed to keep credit card data safe and secure during transit, processing, and storage. Among other things, it […]

Freedom OSS, one of our solutions integrators, specializes in helping enterprise customers and Federal agencies build and deploy secure, compliant applications on AWS. On Tuesday 16 November, AWS and Freedom OSS are joining forces in a half-day event in Chicago. Presenters include: Werner Vogels, HAQM Web Services CTO Max Yankelevich, Freedom OSS Chief Cloud Architect […]

One of the aspects that attracted me to come work at AWS was my sense that the cloud is becoming a logical place in which to build security solutions. Now, two of my favorite notions — deploying security into the cloud and accelerating the adoption of multi-factor authentication — have come together with DS3 CloudAS, […]

Good news for all those interested in security…we’ve released the fourth version of our Overview of Security Processes whitepaper. It contains ten pages of new and additional detailed information. Highlights of new content include: A description of the AWS control environment A list of our SAS-70 Type II Control Objectives Some discussion of risk management […]