Please enable JavaScript.
Coggle requires JavaScript to display documents.
AWS CLOUD SECURITY - Coggle Diagram
AWS CLOUD SECURITY
Share Responsibility Model
AWS Responsibilty
(Security of The Cloud)
Physical Security
of Data Center
Controlled
Need-Based Access
Hardware and Software
Infrastructure
Storage decomissioning
Auditing
Host OS Access Logging
Network Infrastructure
Instrusion Detection
Virtualization Infrastructure
Instance Isolation
Customer Responsibilty
(Security in The Cloud)
Security Group Configuration
OS or Host-Based Firewall
Intrusion Detection
or Prevention Systems
Applications
Password
Role-Based Access
Network Configuration
Operating System
Patching
Maintenance
Account Management
Login & Permission
Settings For Each User
Service Charateristics and
Security Responsibilty
Platfrom as a Service (PaaS)
AWS handles the operating system, database patching,
firewall configuration, and disaster recovery
Customer can focus on managing code or data
Customer does not need to manage the
underlying infrastructure
Software as a Service (SaaS
Software is centrally hosted
Licensed on a subscription model or pay-as-you-go
basis.
Services are typically accessed via web browser, mobile app, or application programming interface (API)
Infrastructure as a Service (IaaS)
Customer is responsible for managing
more aspects ofthe security
Customer configures the access controls
Customer has more flexibility over configuring
networking and storage settings
Identity And Access Management (IAM)
Securing A New AWS Account
Securring Accounts
Securing Data On AWS