Tools
AWS Policy Generator
https://awspolicygen.s3.amazonaws.com/policygen.html
SecDevOps
or DevSecOps https://en.wikipedia.org/wiki/DevOps#DevSecOps,_Shifting_Security_Left
AWS Secure Environment Accelerator
https://cyber.gc.ca/en/guidance/staying-cyber-healthy-during-covid-19
https://www.apple.com/covid19/contacttracing
https://en.wikipedia.org/wiki/Security_information_and_event_management
https://en.wikipedia.org/wiki/Kali_Linux
https://cyber.gc.ca/en/guidance/national-cyber-threat-assessment-2020
Mitre
Layer 2 MACsec security - https://aws.amazon.com/blogs/networking-and-content-delivery/adding-macsec-security-to-aws-direct-connect-connections/
Government level Cloud Security
AWS Secure Environment Accelerator
IDS: Intrusion Detection System
IPS: Intrusion Prevention System
Incident History
Authentication
Authentication verifies user identity via identity tokens - see Open ID Connect protocol https://openid.net/connect/faq/
Authorization
Authorization determines user access via access tokens - see OAUTH 2.0 https://oauth.net/2/
CVE - Critical Vulnerabilities
via nexus
20211209 - CVE-2021-44228 Log4J
https://nvd.nist.gov/vuln/detail/CVE-2021-44228
Mitigation
Spring boot embedded Tomcat mitigation - see spring-boot-starter-log4j2
https://unit42.paloaltonetworks.com/apache-log4j-vulnerability-cve-2021-44228/
20220826
https://www.fortinet.com/blog/threat-research/pivnoxy-and-chinoxy-puppeteer-analysis
Blockchain - Ledger
https://github.com/hyperledger/indy-node
People
Microsoft | Brad Smith |
https://en.wikipedia.org/wiki/Citizen_Lab |
S3
Security Standards
NIST
ISO 27001
OWASP