Posted On: Nov 1, 2018
Amazon GuardDuty has further optimized the analysis of AWS CloudTrail logs resulting in reduced GuardDuty cost for many customers. Cost reductions will vary by customer based on their volume of AWS CloudTrail logs. Customers with high-volumes of global CloudTrail events will see the greatest net positive impact. We introduced the first round of CloudTrail log analysis improvement in June 2018. This next optimization is a continuation of our efforts to reduce GuardDuty costs for customers, while at the same time continuously adding security value by introducing new detections and improving existing detections in the service.
AWS CloudTrail captures a comprehensive log of changes that occurred in your AWS accounts. Amazon GuardDuty analyzes this data using machine learning and anomaly detection to identify unusual or unauthorized activity, like crypto-currency mining, unusual infrastructure deployments, or unauthorized access to your accounts. Amazon GuardDuty then alerts you to this potentially malicious activity affecting the security of your AWS resources.
This performance enhancement is available today in all AWS Regions where GuardDuty is offered. No action is required for customers to take advantage of this cost savings. To start your 30-day free trial, see Amazon GuardDuty.