AWS Management Console
Account Settings
Billing & Cost Management
Security Credentials
AWS Personal Health Dashboard
Start-upsStart-ups use AWS for everything their app needs.
EnterprisesEnterprises use AWS to deliver IT innovation globally while reducing costs.
Government & EducationPublic Sector organizations use AWS to improve agility while reducing costs.
Products
Compute
Storage
Databases
Migration
Networking & Content Delivery
Developer Tools
Management Tools
Security, Identity & Compliance
Analytics
Artificial Intelligence
Mobile Services
Application Services
Messaging
Business Productivity
Desktop & App Streaming
Internet of Things
Contact Center
Game Development
AWS Marketplace Software
Developers
Get StartedStart developing on Amazon Web Services using one of our pre-built sample apps.
ToolsSDKs, IDE Toolkits, Command Line Tools, and Developer Tools for AWS.
DevOpsTooling and infrastructure resources for DevOps.
Serverless ComputingBuild and run applications without thinking about servers
Forums
User Groups
Java
JavaScript
Mobile
PHP
Ruby
Python
Windows & .NET
Training & Resources
TRAINING & CERTIFICATION
Training
Self-Paced Labs
Certification
Resource Centers
OTHER RESOURCES
Whitepapers
Analyst Reports
Forums
AWS YouTube Channel
Events & Webinars
Support & Services
AWS SUPPORT
AWS Support Information
Support Center
AWS Trusted Advisor
Technical FAQs
Forums
AWS Personal Health Dashboard
Service Health Dashboard
Contact Us
AWS PROFESSIONAL SERVICES
AWS Professional Services
Cloud Adoption Framework
AWS MANAGED SERVICES
AWS Managed Services
Partners
AWS Partner NetworkLearn more about the AWS Partner Network and supporting Partner Programs
Find AWS PartnersFind qualified APN Partners to help you with your AWS projects
Premier Consulting PartnersLearn more about top APN Consulting Partners globally
APN Partner SolutionsFind validated partner solutions that run on or integrate with AWS, by key vertical and solution areas.
Log in to the APN PortalDownload content, access training, and engage with AWS through the partner-only AWS site
Visit the APN Blog
Documentation
Compute
Storage
Database
Networking & Content Delivery
Migration
Developer Tools
Management Tools
Security, Identity & Compliance
Analytics
Artificial Intelligence
Internet of Things
Game Development
Mobile Services
Application Services
Messaging
Business Productivity
Desktop & App Streaming
SDKs & Toolkits
Additional Software & Services
AWS General Reference
AWS Management Console
Resources
Websites & Web Apps
Websites & Website HostingPower web, social, and mobile apps in the cloud
DevOpsTooling and infrastructure resources for DevOps
Serverless ComputingBuild and run applications without thinking about servers
Ecommerce ApplicationsBuild secure and scalable online storefronts
Digital MarketingHighly scalable online advertising and marketing services in the cloud
AWS MARKETPLACE
WordPress powered by AMIMOTO
Movable Type 6
Drupal powered by Bitnami
View All Related Products (95+)
Backup, Storage, & Archive
Backup & RecoveryStore and retrieve any data, anywhere, any time
Data ArchiveArchive your data for long-term retention
Disaster RecoveryRecover your systems and data quickly from a disaster
AWS MARKETPLACE
Cloud Protection Manager Standard Edition
SoftNAS Cloud
ONTAP Cloud for AWS
View All Related Products (35+)
Big Data & HPC
Big DataStore and process large datasets to solve business problems
High Performance ComputingRun tightly-coupled and IO-intensive workloads to solve complex science, engineering and business problems
Internet of ThingsQuickly build connected devices with backend services
Serverless ComputingBuild and run applications without thinking about servers
AWS MARKETPLACE
TIBCO Jaspersoft Reporting and Analytics for AWS (Hourly)
Matillion ETL
Zoomdata
View More BI Solutions
Financial Services
Financial ServicesCustomer applications, data analytics, storage, compliance, and security in the cloud.
AWS MARKETPLACE
TIBCO Spotfire
Informatica Cloud Advanced for Amazon Redshift
View All Related Products (25+)
Game Development
Game Development and OperationServices and infrastructure for mobile, web, PC, and console games
Amazon for Game DevelopersCross-platform building blocks to help you make games
AWS MARKETPLACE
ORBX Cloud Game Console
Windows Server 2008R2 with NVIDIA GRID GPU Driver
Red5 Media Server
View All Related Products (25+)
Digital Media
Digital MediaMedia storage, archiving, processing, and delivery from the cloud
AWS MARKETPLACE
Adobe Media Server 5 Extended
Wowza Streaming Engine 4: Pro Edition
Vantage Transcode Server
View More Media Solutions
Healthcare & Life Sciences
HealthcareDeliver improved care to patients with reduced time and effort
Life SciencesServices and infrastructure to help your company solve complex problems
GenomicsAccess powerful computing tools to run genomics workloads
AWS MARKETPLACE
NCBI Blast
View All Related Products (25+)
Business Apps
Business AppsRun business-critical applications in a secure and robust environment
OracleRun your Oracle applications on the AWS Cloud
SAPRun your SAP workloads and applications on AWS’s scalable infrastructure
MicrosoftAll of your Microsoft applications in the AWS Cloud
AWS MARKETPLACE
SAP HANA One
Oddo
Microsoft SharePoint Foundation 2013
View All Related Products (845+)
Compute
Amazon EC2Virtual Servers in the Cloud
Amazon EC2 Container RegistryStore and Retrieve Docker Images
Amazon EC2 Container ServiceRun and Manage Docker Containers
Amazon LightsailLaunch and Manage Virtual Private Servers
Amazon VPCIsolated Cloud Resources
AWS BatchRun Batch Jobs at Any Scale
AWS Elastic BeanstalkRun and Manage Web Apps
AWS Lambda Run Code without Thinking about Servers
Auto Scaling
Elastic Load Balancing
AWS MARKETPLACE
CentOS 7
Debian GNU/Linux 8 (Jessie)
Alces Flight
View All Related Products (1800+)
Storage
Amazon Simple Storage Service (S3)Scalable Storage in the Cloud
Amazon Elastic Block Storage (EBS)EC2 Block Storage Volumes
Amazon Elastic File System (EFS)Fully Managed File System for EC2
Amazon GlacierLow-cost Archive Storage in the Cloud
AWS Storage GatewayHybrid Storage Integration
AWS SnowballPetabyte-scale Data Transport
AWS Snowball EdgePetabyte-scale Data Transport with On-board Compute
AWS SnowmobileExabyte-scale Data Transport
AWS MARKETPLACE
SoftNAS Cloud
Cloud Protection Manager Standard Edition
Panzura Global NAS Appliance
View More Storage Solutions
Databases
Amazon AuroraHigh Performance Managed Relational Database
Amazon RDSManaged Relational Database Service for MySQL, PostgreSQL, Oracle, SQL Server, and MariaDB
Amazon DynamoDBManaged NoSQL Database
Amazon DynamoDB Accelerator (DAX)Fully Managed, In-memory Cache for DynamoDB
Amazon ElastiCacheIn-memory Caching Service
Amazon RedshiftFast, Simple, Cost-Effective Data Warehousing
AWS Database Migration ServiceMigrate Databases with Minimal Downtime
AWS MARKETPLACE
SAP HANA One
Couchbase
Teradata
View More Database Software
Migration
AWS Application Discovery ServiceDiscover on-premises applications to streamline migration
AWS Database Migration ServiceMigrate Databases with Minimal Downtime
AWS Server Migration ServiceMigrate On-premises servers to AWS
AWS SnowballPetabyte-scale Data Transport
AWS Snowball EdgePetabyte-scale Data Transport with On-board Compute
AWS SnowmobileExabyte-scale Data Transport
Networking & Content Delivery
Amazon VPCIsolated Cloud Resources
Amazon CloudFrontGlobal Content Delivery Network
Amazon Route 53Scalable Domain Name System (DNS)
AWS Direct ConnectDedicated Network Connection to AWS
Elastic Load Balancing
AWS MARKETPLACE
Cisco Cloud Services Router
Brocade
F5 BIG-IP
View More Networking Solutions
Developer Tools
AWS CodeStarDevelop and Deploy AWS Applications
AWS CodeCommitStore Code in Private Git Repositories
AWS CodeBuildBuild and Test Code
AWS CodeDeployAutomate Code Deployments
AWS CodePipelineRelease Software using Continuous Delivery
AWS X-RayAnalyze and Debug Your Applications
AWS Command Line InterfaceUnified Tool to Manage AWS Services
AWS MARKETPLACE
Zend Server
Coldfusion
Chef Server
View More Developer Tools
Management Tools
Amazon CloudWatchMonitor Resources and Applications
Amazon EC2 Systems ManagerConfigure and Manage EC2 Instances and On-premises Servers
AWS CloudFormationCreate and Manage Resources with Templates
AWS CloudTrailTrack User Activity and API Usage
AWS ConfigTrack Resource Inventory and Changes
AWS OpsWorksAutomate Operations with Chef
AWS Service CatalogCreate and Use Standardized Products
AWS Trusted AdvisorOptimize Performance and Security
AWS Personal Health DashboardPersonalized view of AWS service health
AWS Command Line InterfaceUnified Tool to Manage AWS Services
AWS Management ConsoleWeb-based User Interface
AWS Managed ServicesInfrastructure Operations Management for AWS
AWS MARKETPLACE
Warewolf for Developers
Kurian
Kumolus
View All Related Solutions
Security, Identity & Compliance
AWS Identity and Access Management (IAM)Manage User Access and Encryption Keys
Amazon InspectorAnalyze Application Security
AWS Certificate ManagerProvision, Manage, and Deploy SSL/TLS Certificates
AWS CloudHSMHardware-based Key Storage for Regulatory Compliance
AWS Directory ServiceHost and Manage Active Directory
Amazon Cloud DirectoryCreate Flexible Cloud-Native Directories
AWS Key Management ServiceManaged Creation and Control of Encryption Keys
AWS OrganizationsPolicy-based management for multiple AWS accounts
AWS ShieldDDoS Protection
AWS WAFFilter Malicious Web Traffic
AWS Artifact
AWS MARKETPLACE
Trend Micro Deep Security
Barracuda Web Application firewall
Gemalto SafeNet
View More Security Solutions
Analytics
Amazon AthenaQuery Data in S3 using SQL
Amazon EMRHosted Hadoop Framework
Amazon CloudSearchManaged Search Service
Amazon Elasticsearch ServiceRun and Scale Elasticsearch Clusters
Amazon KinesisWork with Real-time Streaming Data
Amazon RedshiftFast, Simple, Cost-effective Data Warehousing
Amazon QuickSightFast Business Analytics Service
AWS Data PipelineOrchestration Service for Periodic, Data-Driven Workflows
AWS GluePrepare and Load Data
AWS MARKETPLACE
TIBCO Jaspersoft Reporting and Analytics for AWS (Hourly)
Attunity CloudBeam for Amazon Redshift
Matillion ETL for Redshift
View More BI Solutions
Artificial Intelligence
Amazon LexBuild Voice and Text Chatbots
Amazon PollyTurn Text into Lifelike Speech
Amazon RekognitionSearch and Analyze Images
Amazon Machine LearningMachine Learning for Developers
Mobile Services
AWS Mobile HubBuild, Test, and Monitor Mobile Apps
Amazon API GatewayBuild, Deploy, and Manage APIs
Amazon CognitoUser Identity and App Data Synchronization
Amazon PinpointPush Notifications for Mobile Apps
AWS Device FarmTest Android, iOS, and Web Apps on Real Devices in the AWS Cloud
AWS Mobile SDKBuild High Quality Mobile Apps Quickly and Easily
AWS MARKETPLACE
Bitfusion Mobile deep learning
Kony MobileFabric
HPE Mobile center
View More Mobile Solutions
Mobile Services
AWS Mobile HubBuild, Test, and Monitor Mobile Apps
Amazon API GatewayBuild, Deploy, and Manage APIs
Amazon CognitoUser Identity and App Data Synchronization
Amazon PinpointPush Notifications for Mobile Apps
AWS Device FarmTest Android, iOS, and Web Apps on Real Devices in the AWS Cloud
AWS Mobile SDKBuild High Quality Mobile Apps Quickly and Easily
Application Services
AWS Step FunctionsCoordinate Distributed Applications
Amazon API GatewayBuild, Publish and Manage APIs
Amazon Elastic TranscoderEasy-to-use Scalable Media Transcoding
Amazon AppStreamLow-latency Application Streaming
AWS MARKETPLACE
Adobe ColdFusion 11
Nginx
Citrix Netscaler
View All Related Products (260+)
Messaging
Amazon Simple Queue Service (SQS)Managed Message Queues
Amazon Simple Notification Service (SNS)Pub/Sub, Mobile Push and SMS
Amazon PinpointPush Notifications for Mobile Apps
Amazon Simple Email Service (SES)Email Sending and Receiving
Business Productivity
Amazon WorkDocsSecure Enterprise Document Storage and Sharing
Amazon WorkMailSecure Email and Calendaring
Amazon ChimeFrustration-free meetings, video calls, and chat
Desktop & App Streaming
Amazon WorkSpacesVirtual Desktops in the Cloud
Amazon AppStream 2.0Stream desktop applications securely to a browser
Internet of Things
AWS IoT PlatformConnect Devices to the Cloud
AWS GreengrassLocal Compute, Messaging, and Sync for Devices
AWS IoT ButtonCloud Programmable Dash Button
AWS MARKETPLACE
Sirqul IoT Platform
OpenDOF IoT Router
View All Related Products
Contact Center
Amazon ConnectCloud-based contact center service
Game Development
Amazon GameLiftAmazon GameLift: Simple, fast, cost-effective dedicated game server hosting.
Amazon LumberyardA Free Cross-Platform 3D Game Engine, with Full Source, Integrated with AWS and Twitch
AWS Marketplace Software
INFRASTRUCTURE SOFTWARE (1300+)
Application Development
Application Servers
Application Stacks
Big Data
Databases & Caching
Network Infrastructure
Operating Systems
Security
BUSINESS SOFTWARE (845+)
Business Intelligence
Collaboration
Content Management
CRM
eCommerce
Education & Research
Financial Services
High Performance Computing
Media
Project Management
Storage & Backup
DEVELOPER TOOLS (220+)
Issue & Bug Tracking
Monitoring
Log Analysis
Source Control
Testing
Resource Center
Economics CenterFind calculators and other tools to help you lower costs with the AWS Cloud.
Security CenterLearn about AWS Cloud security and how to build secure applications.
Compliance CenterLearn about the compliance programs on the AWS Cloud and establishing controls
Architecture CenterLearn how to build scalable and reliable applications in the AWS Cloud.
Knowledge CenterGet answers to frequently asked technical support questions.
AWS AnswersGet clear guidance from AWS architects and engineers on common user questions.
Compute
Amazon EC2
Amazon ECR
Amazon ECS
Amazon Lightsail
Amazon VPC
AWS Elastic Beanstalk
AWS Lambda
Auto Scaling
Elastic Load Balancing
Storage
Amazon S3
Amazon EBS
Amazon EFS
Amazon Glacier
AWS Snowball
AWS Storage Gateway
Database
Amazon RDS
Amazon DynamoDB
Amazon ElastiCache
Amazon Redshift
Networking & Content Delivery
Amazon VPC
Amazon CloudFront
AWS Direct Connect
Elastic Load Balancing
Amazon Route 53
Migration
AWS Database Migration Service
AWS Server Migration Service
AWS Schema Conversion Tool
AWS Import/Export
AWS Application Discovery Service
Developer Tools
AWS CodeCommit
AWS CodeBuild
AWS CodeDeploy
AWS CodePipeline
AWS X-Ray
AWS Tools & SDKs
Management Tools
Amazon CloudWatch
AWS CloudFormation
AWS CloudTrail
AWS Config
AWS OpsWorks
AWS Service Catalog
AWS Trusted Advisor
AWS Health
AWS Management Console
AWS Command Line Interface
AWS Tools for PowerShell
Security, Identity & Compliance
AWS Identity and Access Management (IAM)
Amazon Inspector
AWS Artifact
AWS Certificate Manager
AWS Directory Service
AWS CloudHSM
AWS KMS
AWS Shield
AWS WAF
Analytics
Amazon Athena
Amazon EMR
Amazon CloudSearch
Amazon Elasticsearch Service
Amazon Kinesis
Amazon Redshift
Amazon QuickSight
AWS Data Pipeline
Artificial Intelligence
Amazon Lex
Amazon Polly
Amazon Rekognition
Amazon Machine Learning
Internet of Things
AWS IoT
Game Development
Amazon GameLift
Amazon Lumberyard
Mobile Services
AWS Mobile Hub
Amazon API Gateway
Amazon Cognito
AWS Device Farm
Amazon Mobile Analytics
Amazon Pinpoint
AWS Mobile SDK for Android
AWS Mobile SDK for iOS
AWS Mobile SDK for Unity
AWS Mobile SDK for Xamarin
Amazon Simple Notification Service (SNS)
Application Services
Amazon API Gateway
Amazon Elastic Transcoder
Amazon SWF
AWS Step Functions
Messaging
Amazon Simple Queue Service (SQS)
Amazon Simple Notification Service (SNS)
Amazon Pinpoint
Amazon Simple Email Service (SES)
Business Productivity
Amazon WorkDocs
Amazon WorkMail
Amazon Chime
Desktop & App Streaming
Amazon WorkSpaces
Amazon WAM
Amazon AppStream 2.0
SDKs & Toolkits
AWS SDK for C++
AWS SDK for Go
AWS SDK for Java
AWS SDK for JavaScript
AWS SDK for .NET
AWS SDK for PHP
AWS SDK for Python (boto)
AWS SDK for Ruby
AWS Toolkit for Eclipse
AWS Toolkit for Visual Studio
Additional Software & Services
AWS Billing and Cost Management
AWS Marketplace
AWS Support
Alexa Top Sites
Alexa Web Information Service
Amazon Silk
AWS GovCloud (US)
AWS General Reference
Regions and Endpoints
Security Credentials
ARNs & Service Namespaces
Service Limits
AWS Glossary
AWS Management Console
Resource Groups
Tag Editor
Resources
AWS Quick Starts
AWS Whitepapers
AWS Training & Certification
AWS Case Studies
AWS Documentation on Kindle
AWS Documentation Archive
Amazon EC2
Amazon EC2 Container Registry
Amazon EC2 Container Service
Amazon Lightsail
Amazon VPC
AWS Batch
AWS Elastic Beanstalk
AWS Lambda
Auto Scaling
Elastic Load Balancing
Storage
Amazon Simple Storage Service (S3)
Amazon Elastic Block Storage (EBS)
Amazon Elastic File System (EFS)
Amazon Glacier
AWS Storage Gateway
AWS Snowball
AWS Snowball Edge
AWS Snowmobile
Database
Amazon Aurora
Amazon RDS
Amazon DynamoDB
Amazon DynamoDB Accelerator (DAX)
Amazon ElastiCache
Amazon Redshift
AWS Database Migration Service
Migration
AWS Application Discovery Service
AWS Database Migration Service
AWS Server Migration Service
AWS Snowball
AWS Snowball Edge
AWS Snowmobile
AWS Service Catalog
AWS Trusted Advisor
AWS Personal Health Dashboard
AWS Command Line Interface
AWS Management Console
AWS Managed Services
Artificial Intelligence
Amazon Lex
Amazon Polly
Amazon Rekognition
Amazon Machine Learning
AWS Identity and Access Management (IAM)
Amazon Inspector
AWS Certificate Manager
AWS CloudHSM
AWS Directory Service
Amazon Cloud Directory
AWS Key Management Service
AWS Organizations
AWS Shield
AWS WAF
AWS Artifact
Mobile Services
AWS Mobile Hub
Amazon API Gateway
Amazon Cognito
Amazon Pinpoint
AWS Device Farm
AWS Mobile SDK
Amazon Simple Queue Service (SQS)
Amazon Simple Notification Service (SNS)
Amazon Pinpoint
Amazon Simple Email Service (SES)
Business Productivity
Amazon Chime
Amazon WorkDocs
Amazon WorkMail
Desktop & App Streaming
Amazon WorkSpaces
Amazon AppStream 2.0
Software
AWS Marketplace
Internet of Things
AWS IoT Platform
AWS Greengrass
AWS IoT Button
Contact Center
Amazon Connect
Game Development
Amazon GameLift
Amazon Lumberyard
Protect your data with cloud-powered security.
I'd like information about Security in the Cloud »
Cloud security at AWS is the highest priority. As an AWS customer, you will benefit from a data center and network architecture built to meet the requirements of the most security-sensitive organizations.
An advantage of the AWS cloud is that it allows customers to scale and innovate, while maintaining a secure environment. Customers pay only for the services they use, meaning that you can have the security you need, but without the upfront expenses, and at a lower cost than in an on-premises environment.
Interested in bringing your skills to the cloud? Check out our open Security Careers »
For additional security information, visit our Security Blog »
We worked closely with the Amazon team to develop a security model, which we believe enables us to operate more securely in the public cloud than we can even in our data centers.
Rob Alexander
CIO, Capital One
More controls and increased privacy - all at a lower cost
Keep Your Data Safe
The AWS infrastructure puts strongnbsp&safeguards in place to help protect customer privacy. All data is stored in highly secure AWS data centers.
Meet Compliance Requirements
AWS manages dozens of compliance programs in its infrastructure. This means that segments of your compliance have already been completed.
Save Money
Cut costs by using AWS data centers. Maintain the highest standard of security without having to manage your own facility.
Scale Quickly
Security scales with your AWS cloud usage. No matter the size of your business the AWS infrastructure is designed to keep data safe.
The AWS Cloud operates 44 Availability Zones within 16 geographic Regions around the world, with announced plans for eight more Availability Zones and three more Regions.
Region & Number of Availability Zones
AWS GovCloud (2)
US West
Oregon (3), Northern California (3)
US East
Northern Virginia (5), Ohio (3)
Canada
Central (2)
South America
São Paulo (3)
Europe
Ireland (3), Frankfurt (2), London (2)
Asia Pacific
Singapore (2), Sydney (3), Tokyo (3), Seoul (2), Mumbai (2)
China
Beijing (2)
New Region (coming soon)
Paris
Ningxia
Stockholm
Improving Continuity With Replication Between Regions
In addition to replicating applications and data across multiple data centers in the same region using Availability Zones, you can also choose to increase redundancy and fault tolerance further by replicating data between geographic regions.
Meeting Compliance and Data Residency Requirements
You retain complete control and ownership over the region in which your data is physically located, making it easy to meet regional compliance and data residency requirements.
The AWS Cloud has announced plans to expand with eight new Availability Zones in three new geographic Regions: Ningxia in China, Paris in France and Stockholm in Sweden.
Spend less time on compliance and more time running your business
Have the backing of our extensive support network every step of the way
Real-time insight through AWS Trusted Advisor
Proactive support and advocacy with a Technical Account Manager (TAM)
Learn more »
Strategic advice to create In-Depth Security Solutions
Detect and respond to security issues with the Security Operations Playbook
Learn more »
Inventory and Configuration
Monitoring and Logging
Identity and Access Control
Penetration Testing
Infrastructure Security
AWS provides several security capabilities and services to increase privacy and control network access. These include:
Network firewalls built into Amazon VPC, and web application firewall capabilities in AWS WAF let you create private networks, and control access to your instances and applications
Encryption in transit with TLS across all services
Connectivity options that enable private, or dedicated, connections from your office or on-premises environment
Availability is of paramount importance in the cloud. AWS customers benefit from AWS services and technologies built from the ground up to provide resilience in the face of DDoS attacks.
A combination of AWS services may be used to implement a defense in depth strategy and thwart DDoS attacks. Services designed with an automatic response to DDoS help minimize time to mitigate and reduce impact.
Learn about how to use AWS technologies like autoscaling, Amazon CloudFront and Amazon Route 53 help to mitigate Distributed Denial of Service attacks.
Learn more about DDoS »
AWS offers you the ability to add an additional layer of security to your data at rest in the cloud, providing scalable and efficient encryption features. This includes:
Data encryption capabilities available in AWS storage and database services, such as EBS, S3, Glacier, Oracle RDS, SQL Server RDS, and Redshift
Flexible key management options, including AWS Key Management Service, allowing you to choose whether to have AWS manage the encryption keys or enable you to keep complete control over your keys
Dedicated, hardware-based cryptographic key storage using AWS CloudHSM, allowing you to satisfy compliance requirements
In addition, AWS provides APIs for you to integrate encryption and data protection with any of the services you develop or deploy in an AWS environment.
AWS offers a range of tools to allow you to move fast while still ensuring that your cloud resources comply with organizational standards and best practices. This includes:
A security assessment service, Amazon Inspector, that automatically assesses applications for vulnerabilities or deviations from best practices, including impacted networks, OS, and attached storage
Deployment tools to manage the creation and decommissioning of AWS resources according to organization standards
Inventory and configuration management tools, including AWS Config, that identify AWS resources and then track and manage changes to those resources over time
Template definition and management tools, including AWS CloudFormation to create standard, preconfigured environments
AWS provides tools and features that enable you to see exactly what’s happening in your AWS environment. This includes:
Deep visibility into API calls through AWS CloudTrail, including who, what, who, and from where calls were made
Log aggregation options, streamlining investigations and compliance reporting
Alert notifications through Amazon CloudWatch when specific events occur or thresholds are exceeded
These tools and features give you the visibility you need to spot issues before they impact the business and allow you to improve security posture, and reduce the risk profile, of your environment.
AWS offers you capabilities to define, enforce, and manage user access policies across AWS services. This includes:
AWS Identity and Access Management (IAM) lets you define individual user accounts with permissions across AWS resources
AWS Multi-Factor Authentication for privileged accounts, including options for hardware-based authenticators
AWS Directory Service allows you to integrate and federate with corporate directories to reduce administrative overhead and improve end-user experience
AWS provides native identity and access management integration across many of its services plus API integration with any of your own applications or services.
Please complete and submit the AWS Vulnerability / Penetration Testing Request Form to request authorization for penetration testing to or originating from any AWS resources. There are several important things to note about penetration testing requests:
Permission is required for all penetration tests.
To request permission, you must be logged into the AWS portal using the root credentials associated with the instances you wish to test, otherwise the form will not pre-populate correctly. If you have hired a third party to conduct your testing, we suggest that you complete the form and then notify your third party when we grant approval.
Our policy only permits testing of EC2 and RDS instances that you own. Tests against any other AWS services or AWS-owned resources are prohibited
At this time, our policy does not permit testing small or micro RDS instance types. Testing of m1.small or t1.micro EC2 instance types is not permitted. This is to prevent potential adverse performance impacts on resources that may be shared with other customers.