Chapter 2. Encryption and Microservices

Cloud resources are backed by real, physical infrastructure that is often shared among multiple clients. Given this, it’s essential that resources and data be protected from unauthorized access. AWS resources and data can be isolated by either restricting unauthorized access to them (access control) or by encoding sensitive information into a format that can be read only by its intended audience (encryption). In most cases, encryption is used in combination with access control to secure user data, which is why encryption is essential in cloud security. Some of the ideas discussed in this chapter are not specific to microservices, but they will provide a general overview of security in the cloud. It’s important to understand how AWS handles encryption and access control in order to securely and effectively leverage its infrastructure for your services. Later chapters will apply concepts ...

Get Security and Microservice Architecture on AWS now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.