{"id":2988,"date":"2019-08-31T11:02:33","date_gmt":"2019-08-31T11:02:33","guid":{"rendered":"https:\/\/www.testpreptraining.com\/tutorial\/?page_id=2988"},"modified":"2020-05-01T11:05:18","modified_gmt":"2020-05-01T11:05:18","slug":"security-models","status":"publish","type":"page","link":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/security-models\/","title":{"rendered":"Security Models"},"content":{"rendered":"\n<p><strong>Principle of least privilege<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>requires that each subject in a system be\ngranted most restrictive set of privileges (or lowest clearance) needed for\nperformance of authorized tasks. <\/li><li>The principle also helps to confines damage due\nto any accident, error or unauthorized use.<\/li><\/ul>\n\n\n\n<p><strong>Defense in Depth<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>It requires layering security devices in a\nseries that protects, detects, and responds to attacks on systems.<\/li><\/ul>\n\n\n\n<p><strong>AWS Shared Responsibility Model<\/strong><\/p>\n\n\n\n<p>As per the model, AWS is responsible for security of cloud computing\nsystems as a whole and customer is responsible for security of their instances\nand AWS account.<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>AWS Global Infrastructure: AWS provides cloud\ninfrastructure at regional and edge zones with requisite physical security\nprotection and IT maintenance, in compliance to operational and security\nstandards.<\/li><li>AWS Software (Computation, Storage, Database,\nNetworking): Amazon guarantees secure software platform across all of its\nservice offerings. AWS also provides various security services for users like\nprovisioning of <ul><li>encryption keys<\/li><\/ul><ul><li>network monitoring tools<\/li><\/ul><ul><li>database protection<\/li><\/ul><\/li><\/ul>\n\n\n\n<p><strong>AWS Security by Design (SbD)<\/strong><\/p>\n\n\n\n<p><strong>SbD enlists <\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>control responsibilities<\/li><li>automation of security baselines<\/li><li>configuration of security<\/li><li>customer audit of controls for AWS customer\ninfrastructure, operating systems, services and applications running in AWS.<\/li><li>AWS recommends four-phase approach<ul><li>Phase 1 \u2013 Understand your requirements. Outline\nyour policies and document controls inherited from AWS. <\/li><\/ul><ul><li>Phase 2 \u2013 Build a secure environment that fits\nrequirements and implementation. <\/li><\/ul><ul><li>Phase 3 \u2013 Enforce the use of the templates. <\/li><\/ul><ul><li>Phase 4 \u2013 Perform validation activities.<\/li><\/ul><\/li><\/ul>\n\n\n\n<p><strong>Well-Architected Framework<\/strong><\/p>\n\n\n\n<p>The Well-Architected Framework by Amazon helps users to\nbuild secure, high-performing, resilient, and efficient infrastructure for\ntheir applications. Based on five pillars of cloud architecture design\nprinciples\u2014 <\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>operational excellence<\/li><li>security<\/li><li>reliability<\/li><li>performance efficiency<\/li><li>cost optimization  <\/li><\/ul>\n\n\n\n<figure class=\"wp-block-image\"><img loading=\"lazy\" decoding=\"async\" width=\"624\" height=\"313\" src=\"https:\/\/www.testpreptraining.ai\/tutorial\/wp-content\/uploads\/2019\/09\/image-121.png\" alt=\"\" class=\"wp-image-3671\"\/><\/figure>\n\n\n\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Principle of least privilege requires that each subject in a system be granted most restrictive set of privileges (or lowest clearance) needed for performance of authorized tasks. The principle also helps to confines damage due to any accident, error or unauthorized use. Defense in Depth It requires layering security devices in a series that protects,&#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":2474,"menu_order":4,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"footnotes":""},"categories":[2],"tags":[7,297,521],"class_list":["post-2988","page","type-page","status-publish","hentry","category-amazon-aws","tag-aws","tag-aws-security","tag-security-models"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v22.1 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Security Models - Testprep Training Tutorials<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/security-models\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Security Models - Testprep Training Tutorials\" \/>\n<meta property=\"og:description\" content=\"Principle of least privilege requires that each subject in a system be granted most restrictive set of privileges (or lowest clearance) needed for performance of authorized tasks. The principle also helps to confines damage due to any accident, error or unauthorized use. Defense in Depth It requires layering security devices in a series that protects,...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/security-models\/\" \/>\n<meta property=\"og:site_name\" content=\"Testprep Training Tutorials\" \/>\n<meta property=\"article:modified_time\" content=\"2020-05-01T11:05:18+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.testpreptraining.ai\/tutorial\/wp-content\/uploads\/2019\/09\/image-121.png\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/security-models\/\",\"url\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/security-models\/\",\"name\":\"Security Models - Testprep Training Tutorials\",\"isPartOf\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#website\"},\"datePublished\":\"2019-08-31T11:02:33+00:00\",\"dateModified\":\"2020-05-01T11:05:18+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/security-models\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/security-models\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/security-models\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.testpreptraining.ai\/tutorial\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"AWS Certified Security Specialty\",\"item\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Security Models\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#website\",\"url\":\"https:\/\/www.testpreptraining.ai\/tutorial\/\",\"name\":\"Testprep Training Tutorials\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.testpreptraining.ai\/tutorial\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#organization\",\"name\":\"Testprep Training\",\"url\":\"https:\/\/www.testpreptraining.ai\/tutorial\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png\",\"contentUrl\":\"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png\",\"width\":583,\"height\":153,\"caption\":\"Testprep Training\"},\"image\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Security Models - Testprep Training Tutorials","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/security-models\/","og_locale":"en_US","og_type":"article","og_title":"Security Models - Testprep Training Tutorials","og_description":"Principle of least privilege requires that each subject in a system be granted most restrictive set of privileges (or lowest clearance) needed for performance of authorized tasks. The principle also helps to confines damage due to any accident, error or unauthorized use. Defense in Depth It requires layering security devices in a series that protects,...","og_url":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/security-models\/","og_site_name":"Testprep Training Tutorials","article_modified_time":"2020-05-01T11:05:18+00:00","og_image":[{"url":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-content\/uploads\/2019\/09\/image-121.png"}],"twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/security-models\/","url":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/security-models\/","name":"Security Models - Testprep Training Tutorials","isPartOf":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#website"},"datePublished":"2019-08-31T11:02:33+00:00","dateModified":"2020-05-01T11:05:18+00:00","breadcrumb":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/security-models\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/security-models\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/security-models\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.testpreptraining.ai\/tutorial\/"},{"@type":"ListItem","position":2,"name":"AWS Certified Security Specialty","item":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/"},{"@type":"ListItem","position":3,"name":"Security Models"}]},{"@type":"WebSite","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#website","url":"https:\/\/www.testpreptraining.ai\/tutorial\/","name":"Testprep Training Tutorials","description":"","publisher":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.testpreptraining.ai\/tutorial\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#organization","name":"Testprep Training","url":"https:\/\/www.testpreptraining.ai\/tutorial\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/","url":"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png","contentUrl":"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png","width":583,"height":153,"caption":"Testprep Training"},"image":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/"}}]}},"_links":{"self":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/2988","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/comments?post=2988"}],"version-history":[{"count":3,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/2988\/revisions"}],"predecessor-version":[{"id":3673,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/2988\/revisions\/3673"}],"up":[{"embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/2474"}],"wp:attachment":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/media?parent=2988"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/categories?post=2988"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/tags?post=2988"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}