This week's articles
State of Cloud Security Concerns, Challenges, and Incidents
Survey which tried to understand current and estimated future cloud usage, determine the current security concerns during cloud adoption and deployment, identify the security tools organizations are using to address security concerns, and understand occurrences and causes of cloud-related security incidents.
How to secure multi-tenant applications with AppSync and Cognito
A common requirement in multi-tenant applications is to support roles within each tenant. These are usually well-defined roles in your application and a user would fall into one of these roles within his/her tenant. So you not only have to isolate data access by the tenant but also restrict access to certain operations by role.
AWS S3 security with CloudTrail and Falco
How to enhance AWS S3 security and how to enable CloudTrail audit events for this service. The post also explains how to perform AWS Thread Detection with Cloudtrail and introduces a free to use Sysdig Cloud Connector, so you can detect suspicious activity and react as soon as possible.
Kubernetes Lab on Baremetal
My personal approach to deploy my own Kubernetes Lab on baremetal, and on an Intel NUC in particular (disclaimer: I did write this post).