My Problem with AWS

I'm looking at you EKS

Hello avatars, celt here today and we are going to talk about one of my biggest problems with aws. It has to do with security and risk!

My Problem with AWS

AWS IAM

Let’s first understand what AWS IAM is at a fundamental level first, this is a hint about what my problem is.

AWS IAM (Identity and Access Management) is like a security guard for AWS services, controlling who is allowed in (authentication) and what they can do (authorization).

Imagine your AWS account as a building with various rooms (services). IAM is the security system at the entrance. It checks the ID of each person (user authentication), decides which rooms they can enter (service access), and what they can do inside each room (permissions).

AWS IAM is a feature of your AWS account that helps you securely control access to AWS services and resources for your users. It allows you to create and manage AWS users and groups, and use permissions to allow and deny their access to AWS resources. IAM gives you:

1. User Management: Create users (individuals, systems, applications) with credentials to access AWS.

2. Group Management: Group users with similar permissions for easier management.

3. Roles: Define set of permissions to carry out specific tasks, which can be assumed by users, applications, or AWS services.

4. Policies: Attach policies to users, groups, or roles that define their permissions.

5. Multi-Factor Authentication (MFA): Add an extra layer of security.

It's crucial for managing security in your AWS environment, ensuring that only authorized users and services can access your resources.