Posted On: Nov 25, 2019
You can now use AWS IoT Device Defender Audit to check for devices in your fleet that: (1) have overly permissive permissions (e.g., admin permissions, access to metadata actions, data plane actions, or security auditing services); (2) have access to services that haven't been used in over 365 days; (3) use OpenSSL versions on Debian-based operating systems that have been identified as having predictable cryptographic keys making them susceptible to brute force attacks; or (4) use Infineon RSA library versions that have been identified to mishandle RSA key generation making them susceptible to hacking.
These checks are available in all AWS regions where AWS IoT Device Defender is available except for AWS GovCloud (US-West). For more information, refer to the AWS IoT documentation.