This document discusses security in the AWS cloud. It outlines the various AWS services like S3, EC2, VPC and how security groups can be used to restrict access between tiers (web, application, database). It also mentions that AWS provides strong security through control of physical infrastructure, access controls, audits and compliance with regulations like HIPAA and SOX. Customer data is protected and isolated from other customers.
12. Web tier Application tier Database tier HTTP/HTTPS from Internet SSH/RDP management from corpnet SSH/RDP management from corpnet, vendor SSH/RDP management from corpnet
35. Compliance Sarbanes-Oxley Act Ongoing HIPAA Current customer deployments Whitepaper describes the specifics SAS 70 type II Complete Physical security, access controls, change management, operations
36.
37. Thank you very much! Steve Rileysteriley@amazon.com@steveriley@awscloud http://stvrly.wordpress.com