Data Encryption and IAM Policies: Best Practices for AWS Ecosystems
Keywords:
AWS security, data encryption, IAM policiesAbstract
Securing sensitive data in AWS ecosystem remains a critical concern for enterprises as cloud adoption increases. The aim of this paper is to explore the best practises for data encryption Identity and Access Management (IAM) policies in AWS To ensure robust security postures against new evolving threats. As we provide an in-depth analysis of AWS-native encryption mechanism which includes AWS Key Management Service (KMS), envelope encryption, and hardware security modules (HSMs), and also examines the effectiveness in securing data confidentiality and integrity.
Downloads
References
N. Kamble, S. Choudhari, and A. Gupta, "Security and Privacy of AWS S3," International Journal of Innovative Research in Science, Engineering and Technology (IJIRSET), vol. 10, no. 12, pp. 15090–15095, Dec. 2021.
A. Sharma and S. K. Sahay, "IAM Identity Access Management—Importance in Maintaining Security Systems within Organizations," European Journal of Engineering Research and Science, vol. 6, no. 5, pp. 307–312, May 2021.
M. Luttrell, "Validate IAM Policies in CloudFormation Templates Using IAM Access Analyzer," AWS Security Blog, Sep. 2021.
F. Angabini, "Extend AWS IAM Roles to Workloads Outside of AWS with IAM Roles Anywhere," AWS Security Blog, Jul. 2022.
J. Greenwood, B. Behera, and K. Higgins, "Managing Temporary Elevated Access to Your AWS Environment," AWS Security Blog, Nov. 2021.
F. Angabini, "Extend AWS IAM Roles to Workloads Outside of AWS with IAM Roles Anywhere," AWS Security Blog, Jul. 2022.
J. Greenwood, B. Behera, and K. Higgins, "Managing Temporary Elevated Access to Your AWS Environment," AWS Security Blog, Nov. 2021.
Martin, Luther. "Identity-based encryption: From identity and access management to enterprise privacy management." Information Systems Security 16.1 (2007): 9-14.
Al-Khouri, Ali M. "Optimizing identity and access management (IAM) frameworks." International Journal of Engineering Research and Applications 1.3 (2011): 461-477.
Anilkumar, Chunduru, and S. Sumathy. "Security strategies for cloud identity management—A study." International Journal of Engineering & Technology 7, no. 2 (2018): 732-741.
Mohammed, Ishaq Azhar. "Systematic review of identity access management in information security." International Journal of Innovations in Engineering Research and Technology 4.7 (2017): 1-7.
Beiter, M., Mont, M. C., Chen, L., & Pearson, S. (2014). End-to-end policy based encryption techniques for multi-party data management. Computer Standards & Interfaces, 36(4), 689-703.
Downloads
Published
Issue
Section
License
This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.
License Terms
Ownership and Licensing:
Authors of this research paper submitted to the journal owned and operated by The Science Brigade Group retain the copyright of their work while granting the journal certain rights. Authors maintain ownership of the copyright and have granted the journal a right of first publication. Simultaneously, authors agreed to license their research papers under the Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International (CC BY-NC-SA 4.0) License.
License Permissions:
Under the CC BY-NC-SA 4.0 License, others are permitted to share and adapt the work, as long as proper attribution is given to the authors and acknowledgement is made of the initial publication in the Journal. This license allows for the broad dissemination and utilization of research papers.
Additional Distribution Arrangements:
Authors are free to enter into separate contractual arrangements for the non-exclusive distribution of the journal's published version of the work. This may include posting the work to institutional repositories, publishing it in journals or books, or other forms of dissemination. In such cases, authors are requested to acknowledge the initial publication of the work in this Journal.
Online Posting:
Authors are encouraged to share their work online, including in institutional repositories, disciplinary repositories, or on their personal websites. This permission applies both prior to and during the submission process to the Journal. Online sharing enhances the visibility and accessibility of the research papers.
Responsibility and Liability:
Authors are responsible for ensuring that their research papers do not infringe upon the copyright, privacy, or other rights of any third party. The Science Brigade Publishers disclaim any liability or responsibility for any copyright infringement or violation of third-party rights in the research papers.
