JV
Uploaded byJohn Varghese
PPTX, PDF48 views

Building a Highly Secure S3 Bucket

The document discusses the importance of securing Amazon S3 buckets against cloud misconfiguration, which poses significant security risks. It highlights concerns about vulnerabilities in cloud environments and how hackers adapt their strategies to exploit these weaknesses. The presentation includes a deep dive into Amazon S3 security and concludes with a Q&A session.

Technology
Related topics:
AWS Community Day

Embed presentation

Download to read offline
Building a Highly Secure S3 Bucket Josh Stella, Co-Founder and CTO, Fugue| Nov. 13, 2020 Building a Highly Secure S3 Bucket
Agenda 1. Why Cloud Security is Different (A Brief Overview) 2. A deep Dive into the Security of Amazon S3 3. Q&A Building a Highly Secure S3 Bucket
Cloud Misconfiguration is the #1 Risk CONCERNED THEY’VE BEEN HACKED AND DON’T KNOW IT 84% CONCERNED THEY’RE VULNERABLE TO A CLOUD BREACH 92% MISCONFIGURATI ON RISK WILL INCREASE OR STAY THE SAME THIS YEAR 76% ”I’m seeing a lot of cloud configuration errors in the real world- and it’s scaring the hell out of me” -- David Linthicum, InfoWorld Building a Highly Secure S3 Bucket
PRE-CLOUD HACKER STRATEGY 1. Pick Your Target 2. Find Your Vulnerabilities How Hacker Strategy Changed with Cloud CLOUD EXPLOIT STRATEGY 1. Find vulnerabilities 2. Pick your target “Skilled or well-funded hacker groups are employing automation to discover and exploit misconfigured cloud assets within hours of their deployment” --John Breeden II, CSO Online Building a Highly Secure S3 Bucket
DEEP DIVE: THE SECURITY OF AMAZON S3 Building a Highly Secure S3 Bucket
Q&A Building a Highly Secure S3 Bucket

More Related Content

PPTX
Webinar: eCommerce Compliance - PCI meets GDPR
bySucuri
 
PDF
AI Weekly May 4, 2020
byBruno Aziza
 
PPT
Discourage hackers using the ecc 521 system
byGlobal Secured - Reclaim Your Privacy - Gsecc
 
PDF
Malware and the Cost of Inactivity
byCisco Security
 
PDF
RSA Cybercrime Statistics : November 2013
byEMC
 
KEY
SecTor 2012 The Security Mendoza Line
byEd Bellis
 
PDF
Cyber security lifting the veil of hacking webinar
byAssociation for Project Management
 
PPTX
Threat Hunting with Splunk
bySplunk
 
Webinar: eCommerce Compliance - PCI meets GDPR
bySucuri
 
AI Weekly May 4, 2020
byBruno Aziza
 
Discourage hackers using the ecc 521 system
byGlobal Secured - Reclaim Your Privacy - Gsecc
 
Malware and the Cost of Inactivity
byCisco Security
 
RSA Cybercrime Statistics : November 2013
byEMC
 
SecTor 2012 The Security Mendoza Line
byEd Bellis
 
Cyber security lifting the veil of hacking webinar
byAssociation for Project Management
 
Threat Hunting with Splunk
bySplunk
 

What's hot

PDF
BSides SF Security Mendoza Line
byEd Bellis
 
PDF
What is a Mobile Threat?
byLookout
 
PPTX
Content (management) is king: Strategies for secure & efficient social | Ben ...
bySoMeT: A New Model for Destination Marketing
 
PDF
Brighttalk viewing-certificate-digging-into-the-2020-isc-2-cybersecurity-work...
byAlexander Knorr
 
PDF
Get Google Maps EMBED iframe Code
byJan Mikael Granner
 
PDF
Enhanced threat intelligene for s ps v3
byNeil King
 
PDF
Getting started in the Trendexplorer engl
byTrendexplorer
 
PPTX
Webinar How to grow organically globally
byProductinnovationacademy
 
BSides SF Security Mendoza Line
byEd Bellis
 
What is a Mobile Threat?
byLookout
 
Content (management) is king: Strategies for secure & efficient social | Ben ...
bySoMeT: A New Model for Destination Marketing
 
Brighttalk viewing-certificate-digging-into-the-2020-isc-2-cybersecurity-work...
byAlexander Knorr
 
Get Google Maps EMBED iframe Code
byJan Mikael Granner
 
Enhanced threat intelligene for s ps v3
byNeil King
 
Getting started in the Trendexplorer engl
byTrendexplorer
 
Webinar How to grow organically globally
byProductinnovationacademy
 

Similar to Building a Highly Secure S3 Bucket

PDF
Building a Highly Secure Amazon S3 Bucket
byDiemShin
 
PDF
Overview of Security Issues with Amazon S3
byEkkard Schnedermann
 
PPTX
Building A Cloud Security Strategy for Scale
byChris Farris
 
PDF
Cloud Lesson_04_Amazon_Storage_Services.pdf
bys2rxxgtzcq
 
PDF
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
bynairakash2004
 
PDF
Exploring Cloud Computing with Amazon Web Services (AWS)
byKalema Edgar
 
PDF
AWS – jak rozpocząć przygodę z chmurą?
byBrainhub
 
PDF
Lacework Protection for AWS S3 Buckets
byLacework
 
PPTX
Aws object storage and cdn(s3, glacier and cloud front) part 1
byParag Patil
 
PPTX
Big data journey to the cloud rohit pujari 5.30.18
byCloudera, Inc.
 
PDF
AWS simple storage service
byDhananjay Aloorkar
 
PPTX
AWS Amazon S3 Mastery Bootcamp
byMatt Bohn
 
PPTX
ABCs of AWS: S3
byMark Cohen
 
PDF
Introduction to Amazon Web Services
byDayanand Shanmugham
 
PPTX
AWS Simple Storage Service (s3)
byzekeLabs Technologies
 
PPTX
Aws overview part 1(iam and storage services)
byParag Patil
 
PPTX
Houston techfest spring 2018
bySunil Kowlgi
 
PPTX
Amazon web services (aws)
byKevin Bramwell Grant
 
PPTX
Aws Solution Architecture Associate - summary
byonoffshake
 
PDF
AI Meetup
bySalma Virk
 
Building a Highly Secure Amazon S3 Bucket
byDiemShin
 
Overview of Security Issues with Amazon S3
byEkkard Schnedermann
 
Building A Cloud Security Strategy for Scale
byChris Farris
 
Cloud Lesson_04_Amazon_Storage_Services.pdf
bys2rxxgtzcq
 
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
bynairakash2004
 
Exploring Cloud Computing with Amazon Web Services (AWS)
byKalema Edgar
 
AWS – jak rozpocząć przygodę z chmurą?
byBrainhub
 
Lacework Protection for AWS S3 Buckets
byLacework
 
Aws object storage and cdn(s3, glacier and cloud front) part 1
byParag Patil
 
Big data journey to the cloud rohit pujari 5.30.18
byCloudera, Inc.
 
AWS simple storage service
byDhananjay Aloorkar
 
AWS Amazon S3 Mastery Bootcamp
byMatt Bohn
 
ABCs of AWS: S3
byMark Cohen
 
Introduction to Amazon Web Services
byDayanand Shanmugham
 
AWS Simple Storage Service (s3)
byzekeLabs Technologies
 
Aws overview part 1(iam and storage services)
byParag Patil
 
Houston techfest spring 2018
bySunil Kowlgi
 
Amazon web services (aws)
byKevin Bramwell Grant
 
Aws Solution Architecture Associate - summary
byonoffshake
 
AI Meetup
bySalma Virk
 

More from John Varghese

PPTX
Lessons Learned From Cloud Migrations: Planning is Everything
byJohn Varghese
 
PPTX
Leveraging AWS Cloudfront & S3 Services to Deliver Static Assets of a SPA
byJohn Varghese
 
PPTX
AWS Transit Gateway-Benefits and Best Practices
byJohn Varghese
 
PPTX
Bridging Operations and Development With Observabilty
byJohn Varghese
 
PPTX
Security Observability for Cloud Based Applications
byJohn Varghese
 
PPTX
Who Broke My Crypto
byJohn Varghese
 
PPTX
Building an IoT System to Protect My Lunch
byJohn Varghese
 
PPTX
Reduce Amazon RDS Costs up to 50% with Proxies
byJohn Varghese
 
PPTX
Keynote - Lead the change around you
byJohn Varghese
 
PDF
AWS Systems manager 2019
byJohn Varghese
 
PDF
Acd19 kubertes cluster at scale on aws at intuit
byJohn Varghese
 
PPTX
Emerging job trends and best practices in the aws community
byJohn Varghese
 
PDF
Automating security in aws with divvy cloud
byJohn Varghese
 
PDF
AWS temporary credentials challenges in prevention detection mitigation
byJohn Varghese
 
PDF
Securing aws workloads with embedded application security
byJohn Varghese
 
PPTX
Of CORS thats a thing how CORS in the cloud still kills security
byJohn Varghese
 
PPTX
Native cloud security monitoring
byJohn Varghese
 
PDF
Last year in AWS - 2019
byJohn Varghese
 
PDF
Gpu accelerated BERT deployment on aws
byJohn Varghese
 
PPTX
EKS security best practices
byJohn Varghese
 
Lessons Learned From Cloud Migrations: Planning is Everything
byJohn Varghese
 
Leveraging AWS Cloudfront & S3 Services to Deliver Static Assets of a SPA
byJohn Varghese
 
AWS Transit Gateway-Benefits and Best Practices
byJohn Varghese
 
Bridging Operations and Development With Observabilty
byJohn Varghese
 
Security Observability for Cloud Based Applications
byJohn Varghese
 
Who Broke My Crypto
byJohn Varghese
 
Building an IoT System to Protect My Lunch
byJohn Varghese
 
Reduce Amazon RDS Costs up to 50% with Proxies
byJohn Varghese
 
Keynote - Lead the change around you
byJohn Varghese
 
AWS Systems manager 2019
byJohn Varghese
 
Acd19 kubertes cluster at scale on aws at intuit
byJohn Varghese
 
Emerging job trends and best practices in the aws community
byJohn Varghese
 
Automating security in aws with divvy cloud
byJohn Varghese
 
AWS temporary credentials challenges in prevention detection mitigation
byJohn Varghese
 
Securing aws workloads with embedded application security
byJohn Varghese
 
Of CORS thats a thing how CORS in the cloud still kills security
byJohn Varghese
 
Native cloud security monitoring
byJohn Varghese
 
Last year in AWS - 2019
byJohn Varghese
 
Gpu accelerated BERT deployment on aws
byJohn Varghese
 
EKS security best practices
byJohn Varghese
 

Recently uploaded

PDF
What Is AI LXP and Why Enterprises Are Adopting It.pdf
byneuralminds4
 
PDF
Skills to Pass the UiPath Agentic Automation Associate (UiAAA) Certification
byUiPathCommunity
 
PPTX
SOFTWARE DEVELOPMENT PROCESS - INTRODUCTION
byParithi Thamizh
 
PDF
Presentation of Cybersecurity and data protection
bytarikaityahya2
 
PDF
Kubernetes Cloud Native Indonesia Meetup - January 2026
byPrasta Maha
 
PDF
Introduction to Linux and Basic Commands
byiDev Semarang
 
PPTX
Coded Agents – with UiPath SDK + LlamaIndex.pptx
bysuhanisingh58689
 
PPTX
AI in Marine Insurance Future of Smarter Risk, Faster Claims & Safer Shipping...
byAutomationEdge Technologies
 
PDF
Unlocking Gen AI Capabilities Within UiPath Document Understanding
byDianaGray10
 
PPTX
The Abomination of AI – keynote at ICoSCI 2026
byAlan Dix
 
PPTX
Robot Vacuums are Cleaning Up. The global robot vacuum segment has high marke...
byRobert March
 
PPTX
Single Cell Protein from Methane or Methanol - Process development research c...
byJohn Downs
 
PDF
Azure DevOps Managed Services: Driving Speed, Security, and Business Growth
byjohncarterjn
 
PPTX
Understanding-Search-Algorithms_09-12-25.pptx
byshaikmahammedtauheed
 
PDF
Teaching Robots how to Read 1/2: AI Center & Classic Document Understanding (...
byanabulhac
 
PDF
Smart Cloud Solutions-Smart,Secure & Scalable
byfloydjsmith02
 
PPTX
API Gateway Architecture - Technical Report 2026
byPowersoft2026
 
PDF
One String, Many Prompts: AI Code Generation
byGeoffrey Goetz
 
PDF
MINDCTI Revenue Release Quarter 3 2025 - Financial Presentation
byMIND CTI
 
PPT
Database Management Systems: Basics, History, Data Models, etc.
byParithi Thamizh
 
What Is AI LXP and Why Enterprises Are Adopting It.pdf
byneuralminds4
 
Skills to Pass the UiPath Agentic Automation Associate (UiAAA) Certification
byUiPathCommunity
 
SOFTWARE DEVELOPMENT PROCESS - INTRODUCTION
byParithi Thamizh
 
Presentation of Cybersecurity and data protection
bytarikaityahya2
 
Kubernetes Cloud Native Indonesia Meetup - January 2026
byPrasta Maha
 
Introduction to Linux and Basic Commands
byiDev Semarang
 
Coded Agents – with UiPath SDK + LlamaIndex.pptx
bysuhanisingh58689
 
AI in Marine Insurance Future of Smarter Risk, Faster Claims & Safer Shipping...
byAutomationEdge Technologies
 
Unlocking Gen AI Capabilities Within UiPath Document Understanding
byDianaGray10
 
The Abomination of AI – keynote at ICoSCI 2026
byAlan Dix
 
Robot Vacuums are Cleaning Up. The global robot vacuum segment has high marke...
byRobert March
 
Single Cell Protein from Methane or Methanol - Process development research c...
byJohn Downs
 
Azure DevOps Managed Services: Driving Speed, Security, and Business Growth
byjohncarterjn
 
Understanding-Search-Algorithms_09-12-25.pptx
byshaikmahammedtauheed
 
Teaching Robots how to Read 1/2: AI Center & Classic Document Understanding (...
byanabulhac
 
Smart Cloud Solutions-Smart,Secure & Scalable
byfloydjsmith02
 
API Gateway Architecture - Technical Report 2026
byPowersoft2026
 
One String, Many Prompts: AI Code Generation
byGeoffrey Goetz
 
MINDCTI Revenue Release Quarter 3 2025 - Financial Presentation
byMIND CTI
 
Database Management Systems: Basics, History, Data Models, etc.
byParithi Thamizh
 

Building a Highly Secure S3 Bucket

  • 1.
    Building a HighlySecure S3 Bucket Josh Stella, Co-Founder and CTO, Fugue| Nov. 13, 2020 Building a Highly Secure S3 Bucket
  • 2.
    Agenda 1. Why CloudSecurity is Different (A Brief Overview) 2. A deep Dive into the Security of Amazon S3 3. Q&A Building a Highly Secure S3 Bucket
  • 3.
    Cloud Misconfiguration isthe #1 Risk CONCERNED THEY’VE BEEN HACKED AND DON’T KNOW IT 84% CONCERNED THEY’RE VULNERABLE TO A CLOUD BREACH 92% MISCONFIGURATI ON RISK WILL INCREASE OR STAY THE SAME THIS YEAR 76% ”I’m seeing a lot of cloud configuration errors in the real world- and it’s scaring the hell out of me” -- David Linthicum, InfoWorld Building a Highly Secure S3 Bucket
  • 4.
    PRE-CLOUD HACKER STRATEGY 1. PickYour Target 2. Find Your Vulnerabilities How Hacker Strategy Changed with Cloud CLOUD EXPLOIT STRATEGY 1. Find vulnerabilities 2. Pick your target “Skilled or well-funded hacker groups are employing automation to discover and exploit misconfigured cloud assets within hours of their deployment” --John Breeden II, CSO Online Building a Highly Secure S3 Bucket
  • 5.
    DEEP DIVE: THE SECURITYOF AMAZON S3 Building a Highly Secure S3 Bucket
  • 6.
    Q&A Building a HighlySecure S3 Bucket