Category: Security, Identity, & Compliance

We built a formal model of Cedar in Lean, and proved that Cedar’s components satisfy key safety and security properties.

Developers using the Cedar SDK can use two new open source Rust crates, cedar-local-agent and avp-local-agent, to reduce their development burden and ease policy management tasks.

AWS open source project Kani is succeeding in changing the perception, effectiveness, and usability of verification tools that were previously thought to be cumbersome or beyond reach.

On the one-year anniversary of the Open Cybersecurity Schema Framework (OCSF) project, we’re thrilled to announce the release of OCSF v1.0.0 and reflect on the milestones we’ve achieved and the positive impact OCSF has had on the security industry.

Learn how to configure open source Keycloak on Amazon Elastic Kubernetes Service (Amazon EKS) using Terraform to manage an open source application in AWS.

Learn how to streamline Amazon Elastic Kubernetes Service (EKS) multi-cluster authentication using open source Pinniped and Okta as an identity provider.

Today we are happy to announce Snapchange, a new open source fuzzing tool from the AWS Find and Fix (F2) open source security research team.

AWS will be directly funding $500,000 to the Open Source Technology Improvement Fund (OSTIF) as a portion of our ongoing investments in supply chain security. 

Learn how to access the Kubernetes API from an AWS Lambda function entirely in code, without the need to build a container image with executables. This provides a simple approach to create your Lambda functions, and also a faster execution time.

Learn how to integrate open source Cosign with AWS KMS and ensure supply chain security is maintained using open source Kyverno.