Securing the Cloud

Cloud computing has reshaped the digital landscape, but with innovation comes new security challenges. At Amazon Web Services (AWS), the world’s leading cloud provider, security is a relentless pursuit, woven into every decision and initiative. Mark Ryland, the Director of Security at Amazon, sits at the helm of this formidable apparatus, offering a candid look into the company’s bold and proactive approach to safeguarding their vast cloud infrastructure.

At the heart of AWS’s security strategy lies MadPot, an ingenious sensor network that emulates endpoints across their global cloud platform. “It’s given us this incredibly rich source of information about internet bad weather,” Ryland explains, describing the constant probing and automated attacks that MadPot detects.

But MadPot is just the beginning. Ryland delves into the intricacies of Sonaris, a service that actively blocks and shapes traffic, taking proactive measures to protect the platform from harm. “We’re kind of opening the aperture a little bit more broadly on our internal systems,” he says, acknowledging the need for transparency while emphasising the shared responsibility customers have in securing their workloads.

In an exclusive revelation, Ryland shares breaking news: “The MFA team says that just in the last 24 hours, there’s been a big spike in the number of people adding MFA to their AWS accounts since the passkey launch.” This surge in multi-factor authentication adoption among AWS customers underscores the impact of the company’s recent passkey support rollout, making it easier than ever to enhance account security.

Collaboration, Ryland asserts, is a cornerstone of AWS’s security strategy. From automated abuse reports to hosting providers to direct communication with cyber authorities and industry peers, AWS leverages a multi-faceted approach to coordinating threat responses. “We’re trying to move to a place where we can send data in OCSF format to a specific endpoint and have your automation talk to our automation,” Ryland envisions, underscoring the drive for seamless, machine-to-machine collaboration in the face of ever-evolving threats.

Ryland’s insights extend to the realm of database security, an area he acknowledges as a perennial challenge. He lauds the progress made in eliminating default passwords and embracing modern authentication methods, such as the recently launched passkey support, which has already driven a surge in multi-factor authentication adoption among AWS customers.

Yet, amidst this robust security posture, Ryland remains cognizant of the delicate balance between security and innovation. “I’ve never met an AWS builder who was really frustrated by security requirements because it’s like the air they breathe,” he asserts, painting a picture of a culture where security is inherently woven into the development lifecycle, minimising friction and enabling agility.

As businesses and individuals increasingly rely on cloud services, the threat landscape continues to evolve. Mark Ryland and the AWS security team stand as sentinels, their unwavering commitment to security serving as a beacon for the industry. Through a harmonious blend of cutting-edge technology, collaborative partnerships, and a deeply ingrained security culture, AWS continues to chart a bold path, securing the cloud for all.

Read next: Balancing data security with innovation