AWS News Blog

Category: Security, Identity, & Compliance

AWS CloudHSM – Secure Key Storage and Cryptographic Operations

Back in the early days of AWS, I would often receive questions that boiled down to “This sounds really interesting, but what about security?” We created the AWS Security & Compliance Center to publish information about the various reports, certifications, and independent attestations that we’ve earned and to provide you with additional information about the […]

Read More

The AWS CISO on AWS Security

As you can tell by looking at the AWS Security and Compliance Center, we take security seriously. You can find information about our certifications and accreditations in the center, along with links to four security white papers. I would also like to recommend a new AWS video to you. In the video, AWS VP and […]

Read More

Updated AWS Security White Paper; New Risk and Compliance White Paper

We have updated the AWS Security White Paper and we’ve created a new Risk and Compliance White Paper.  Both are available now. The AWS Security White Paper describes our physical and operational security principles and practices. It includes a description of the shared responsibility model, a summary of our control environment, a review of secure […]

Read More

Security, compliance, and governance in the cloud with AWS and Freedom OSS

Freedom OSS, one of our solutions integrators, specializes in helping enterprise customers and Federal agencies build and deploy secure, compliant applications on AWS. On Tuesday 16 November, AWS and Freedom OSS are joining forces in a half-day event in Chicago. Presenters include: Werner Vogels, Amazon Web Services CTO Max Yankelevich, Freedom OSS Chief Cloud Architect […]

Read More

Updated: AWS Security Whitepaper

Good news for all those interested in security…we’ve released the fourth version of our Overview of Security Processes whitepaper. It contains ten pages of new and additional detailed information. Highlights of new content include: A description of the AWS control environment A list of our SAS-70 Type II Control Objectives Some discussion of risk management […]

Read More

What’s New in AWS Security: Vulnerability Reporting and Penetration Testing

Security is a top priority for Amazon Web Services. Providing a trustworthy infrastructure for you to develop and deploy applications is a responsibility we take very seriously. One important aspect of gaining your trust is being open and transparent about our security processes and continually working toward achieving industry-recognized certifications. Other important aspects include providing […]

Read More

Upcoming webinar – Application security in the cloud

Amazon Web Services is teaming with RightScale and HyperStratus to deliver a webinar on cloud security. In survey after survey, and just about everywhere I travel, potential cloud computing users mention security as their number one concern. This webinar presents a set of best practices to ensure security for applications running in the Amazon Web […]

Read More