AWS advantages of cloud over on-premises datacenter

Six advantages of cloud computing - Overview of Amazon Web Services

  • Trade fixed expense for variable expense

  • Benefit from massive economies of scale

  • Stop guessing capacity

  • Increase speed and agility

  • Stop spending money running and maintaining data centers

  • Go global in minutes

Different Ways to secure the AWS account.

  1. Using Password Policy

One of the way we can strengthen the security of AWS account is using Password policy. There is an IAM default policy but we can use Custom policy as per organizational need. Below screenshot describes the ways to strengthen the password and it will avoid hackers from getting into out account.

2. Using MFA (Multifactor Authentication)

To protect AWS root user AWS have given best practices to follow which includes setting up MFA for the root user and Deactivate or delete access keys for root user. In the next section we will go though the process of setting up an MFA.

Process to Implement MFA

Click Add MFA we will have the below screen to implement MFA for your account. We can register upto 8 MFA device for authentication. There are multiple ways to implement i.e.

  • Using AWS approved authentication App for android and iOS,

  • Another is from FIDO-certified hardware security keys are provided by third-party providers such as Yubico.

  • The last option is using TOPT token. Hardware TOPT token is generated by 3rd party providers.

We will discuss MFA setup using Virtual Application for android. Install any of the application from the list of approved apps, next scan QR code and enter MFA1 and MFA2 codes once the code entered is authorized, the device will be Authenticated for the account. Now whenever we will log in along with user name and password it will ask for MFA code which will act as an added security for our account.