更新时间:2021-08-27 19:49:42
封面
Title Page
Copyright and Credits
Cloud Security Automation
Packt Upsell
Why subscribe?
PacktPub.com
Contributors
About the author
About the reviewers
Packt is searching for authors like you
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the example code files
Download the color images
Conventions used
Get in touch
Reviews
Disclaimer
Introduction to Cloud Security
Types of cloud
Public cloud
Private cloud
Hybrid cloud
Software as a Service
Platform as a Service
Infrastructure as a Service
Cloud security
Confidentiality
Integrity
Availability
Authentication
Authorization
Auditing
Shared responsibility model
Shared responsibility model for infrastructure
Shared responsibility model for container service
Shared responsibility model for abstract services
Key concern areas of cloud security
Infrastructure level
User access level
Storage and data level
Application access level
Network level
Logging and monitoring level
Summary
Understanding the World of Cloud Automation
What is DevOps?
Why do we need automation?
Infrastructure as Code
Configuration management
Automate deployment – AWS OpsWorks
Quick recap
Identity and Access Management in the Cloud
IAM features
How does AWS work in IAM?
Anatomy of IAM users groups roles and policies
IAM users
IAM groups
IAM roles
IAM policies
Access right delegation using IAM
Temporary credentials
Cross-account access
Identity federation
IAM best practices
Other security options in AWS
AWS Certificate Manager
WAF and Shield
Cloud hardware security module
Cognito
Amazon Macie
AWS Inspector
AWS GuardDuty
Cloud Network Security
Virtual private cloud
NACL
Security group
VPN connection
Direct Connect
DNS security
CDN-level security
Logging and monitoring
CloudTrail
CloudWatch
Cloud Storage and Data Security
EBS
Fault tolerance at EBS
RAID 0
RAID 1
Encryption in EBS
S3
Security in S3
