UPDATED 20:56 EST / MARCH 27 2019


Amazon Web Services sharpens its focus on cloud security

The pressing need for better cybersecurity dominated today at Amazon Web Services Inc.’s AWS Summit, making it clear that Amazon.com Inc.’s cloud computing giant is making it an even higher priority.

Security was arguably the headliner of the one-day conference in Santa Clara, California, which attracted some 6,500 AWS customers and partners. And many of the exhibitors in the expo hall were cybersecurity providers aiming to provide the many companies venturing into the cloud with a little assurance that they can keep their customers’ data, and their own, safe from attackers.

“Security needs to become everyone’s job,” said Werner Vogels (pictured), Amazon.com’s chief technical officer, who wore a T-shirt that read “Encrypt Everything” during his two-hour keynote. “We as technologists need to take responsibility that we keep our customers and businesses secure.”

Prioritizing security

Vogels’ concern about security comes at a time when enterprise hacking via social engineering has become more prevalent as criminals have grown increasingly sophisticated in their ability to generate realistic phishing emails. All it takes is one unsuspecting user to click on a malware-loaded link and the threat actors are in.

“These brute-force, front-door attacks almost never happen anymore,” Vogels said. “It’s all about social engineering. There’s always an idiot that clicks that link.”

AWS has not been completely immune from malicious mischief. A vengeful former employee of a customer was recently sentenced to jail for trashing AWS accounts using a stolen credential. A 2018 report by RedLock documented the compromise of a Kubernetes server in AWS to mine cryptocurrency. One security researcher recently published findings on how to attack an AWS account through a Lambda function that allowed execution of shell commands.

AWS can read headlines too, and Vogels made a point to remind conference attendees of the wide range of security tools available for users. These include solutions such as Amazon Inspector, which continuously scans code and can ensure compliance as well. The company also offers AWS CloudTrail, which monitors cloud usage logs and records API calls.

“There’s a whole collection of AWS security tools around automation that you all should be using,” Vogels said. “Given that we’ve built encryption into almost all AWS services, make use of it.”

There’s also a raft of partners working with AWS to provide more security tools — and many of them are using AWS services to create and provide them.

Workload identity technology startup Aporeto Inc., for instance, had originally used its own version of Kubernetes but told SiliconANGLE that it’s in the process of migrating to Amazon’s EKS managed Kubernetes service. Likewise, network security startup Blue Hexagon Inc. uses AWS’ compute engine to power the training of its deep learning neural networks as well as EKS, AWS’ Lambda “serverless” technology for automating the provisioning of cloud machines, and other services. “Without that, it would have been six more months” to create Blue Hexagon’s service, CEO Nayeem Islam said in an interview.

New bank and automotive deals

AWS’ rapid growth has stemmed from how fast the company has rolled out new products and services, and Wednesday was no exception on that front. AWS Deep Learning Containers will include packaged artificial intelligence and tools for deployment on various compute instances. The company also provided details on an automation tool for its Redshift data warehouse called Concurrency Scaling. “Redshift is now 10 times faster than it was two years ago,” Vogels said on Wednesday.

Such developments are attracting more new customers to the AWS fold. In addition to announcing that Standard Bank Group, the largest African financial institution by assets, would migrate its production workloads to AWS, Volkswagen AG declared that it would join forces with the cloud provider to build a new Industrial Cloud, using data gathered from all 122 of its automotive plants.

That’s in addition to rising use of Amazon’s cloud by other large enterprise customers. McDonald’s Corp., an AWS customer, is servicing 20,000 orders per second through AWS-powered microservices using containerized technology. Expedia’s HomeAway vacation rentals service is uploading six million images per month using AWS’s Lambda serverless computing platform. And Ellie Mae, which processes 40 percent of all mortgages in the U.S. according to Satheesh Ravala, the company’s senior vice president of cloud engineering and operations, will go “all in” with the public cloud provider by next year.

Following up on a multitude of announcements made during its re:Invent conference in November, AWS also declared general availability for a host of products, including App MeshToolkit for IntelliJ and Glacier Deep Archive.

With reporting from Robert Hof

Photo: Robert Hof/SiliconANGLE

A message from John Furrier, co-founder of SiliconANGLE:

Show your support for our mission by joining our Cube Club and Cube Event Community of experts. Join the community that includes Amazon Web Services and Amazon.com CEO Andy Jassy, Dell Technologies founder and CEO Michael Dell, Intel CEO Pat Gelsinger and many more luminaries and experts.

Join Our Community 

Click here to join the free and open Startup Showcase event.

“TheCUBE is part of re:Invent, you know, you guys really are a part of the event and we really appreciate your coming here and I know people appreciate the content you create as well” – Andy Jassy

We really want to hear from you, and we’re looking forward to seeing you at the event and in theCUBE Club.

Click here to join the free and open Startup Showcase event.