The
- It is a cloud security framework that defines the security obligations of the customer versa the CSP )ex. AWS)
- The security when it comes to securing your AWS account is a shared responsibility between AWS and YOU
- YOU: responsible for security IN the cloud
- AWS: responsible for security OF the cloud
- diagram
- AWS
- Everything you can’t control
- YOU
- Everything you CAN control
Protecting your account
- Secure Credentials
- Choose a strong pw
- Change it frequently
- Don’t share credentials
- Multi-Factor Authentication
- Enable MFA (not enabled by default)
- Use a digital/physical solution to make sure that the pw alone is not enough
- Name > Security Credentials > Multi-factor authentication
- Utilize IAM Users
- Specific to AWS
- Create IAM for accessing your account
- Every person (ex. colleague) should use a separate user