AWS Security Blog

Tag: Cognito

HAQM Cognito and AWS WAF diagram

Protect your HAQM Cognito user pool with AWS WAF

September 8, 2023: It’s important to know that if you activate user sign-up in your user pool, anyone on the internet can sign up for an account and sign in to your apps. Don’t enable self-registration in your user pool unless you want to open your app to allow users to sign up. Many of […]

Analyze HAQM Cognito advanced security intelligence to improve visibility and protection

January 28, 2025: The following blog post describes how to process AWS CloudTrail logs for user authentication events and query events for additional intelligence. HAQM Cognito added support for exporting threat protection user activity logs, which helps to streamline log processing for Plus feature tier customers. However, customers in the Plus tier can still use […]

Figure 1: Automation to build forensic kernel modules for an HAQM Linux EC2 instance

How to automatically build forensic kernel modules for HAQM Linux EC2 instances

In this blog post, we will walk you through the EC2 forensic module factory solution to deploy automation to build forensic kernel modules that are required for HAQM Elastic Compute Cloud (HAQM EC2) incident response automation. When an EC2 instance is suspected to have been compromised, it’s strongly recommended to investigate what happened to the […]

Figure 1: Step-up authentication high-level reference architecture

Implement step-up authentication with HAQM Cognito, Part 2: Deploy and test the solution

This solution consists of two parts. In the previous blog post Implement step-up authentication with HAQM Cognito, Part 1: Solution overview, you learned about the architecture and design of a step-up authentication solution that uses AWS services such as HAQM API Gateway, HAQM Cognito, HAQM DynamoDB, and AWS Lambda to protect privileged API operations. In […]

Figure 1: Step-up authentication high-level reference architecture

Implement step-up authentication with HAQM Cognito, Part 1: Solution overview

In this blog post, you’ll learn how to protect privileged business transactions that are exposed as APIs by using multi-factor authentication (MFA) or security challenges. These challenges have two components: what you know (such as passwords), and what you have (such as a one-time password token). By using these multi-factor security controls, you can implement […]

HAQM Cognito launches support for in-Region integration with HAQM SES and HAQM SNS

HAQM Cognito launches support for in-Region integration with HAQM SES and HAQM SNS

We are pleased to announce that in all AWS Regions that support HAQM Cognito, you can now integrate HAQM Cognito with HAQM Simple Email Service (HAQM SES) and HAQM Simple Notification Service (HAQM SNS) in the same Region. By integrating these services in the same Region, you can more easily achieve lower latency, and remove […]

Security Practices in AWS Multi-Tenant SaaS Environments

Security practices in AWS multi-tenant SaaS environments

Securing software-as-a-service (SaaS) applications is a top priority for all application architects and developers. Doing so in an environment shared by multiple tenants can be even more challenging. Identity frameworks and concepts can take time to understand, and forming tenant isolation in these environments requires deep understanding of different tools and services. While security is […]