<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>ABAC &#8211; Noise</title>
	<atom:link href="https://noise.getoto.net/tag/abac/feed/" rel="self" type="application/rss+xml" />
	<link>https://noise.getoto.net</link>
	<description>The collective thoughts of the interwebz</description>
	<lastBuildDate>Wed, 07 Dec 2022 18:30:46 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=6.8.2</generator>
	<item>
		<title>How to secure your SaaS tenant data in DynamoDB with ABAC and client-side encryption</title>
		<link>https://noise.getoto.net/2022/12/07/how-to-secure-your-saas-tenant-data-in-dynamodb-with-abac-and-client-side-encryption/</link>
		
		<dc:creator><![CDATA[Jani Muuriaisniemi]]></dc:creator>
		<pubDate>Wed, 07 Dec 2022 18:30:46 +0000</pubDate>
				<category><![CDATA[ABAC]]></category>
		<category><![CDATA[Data protection]]></category>
		<category><![CDATA[DynamoDB]]></category>
		<category><![CDATA[encryption]]></category>
		<category><![CDATA[Expert (400)]]></category>
		<category><![CDATA[IAM]]></category>
		<category><![CDATA[kms]]></category>
		<category><![CDATA[SaaS]]></category>
		<category><![CDATA[Security Blog]]></category>
		<category><![CDATA[Security, Identity & Compliance]]></category>
		<category><![CDATA[Technical How-to]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=52c4b62b7eb10d702a2e2c0d5a7297cb</guid>

					<description><![CDATA[If you’re a SaaS vendor, you may need to store and process personal and sensitive data for large numbers of customers across different geographies. When processing sensitive data at scale, you have an increased responsibility to secure this data end-to-end. Client-side encryption of data, such as your customers’ contact information, provides an additional mechanism that […]]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Scaling cross-account AWS KMS–encrypted Amazon S3 bucket access using ABAC</title>
		<link>https://noise.getoto.net/2022/02/23/scaling-cross-account-aws-kms-encrypted-amazon-s3-bucket-access-using-abac/</link>
		
		<dc:creator><![CDATA[Jorg Huser]]></dc:creator>
		<pubDate>Wed, 23 Feb 2022 20:19:34 +0000</pubDate>
				<category><![CDATA[ABAC]]></category>
		<category><![CDATA[Advanced (300)]]></category>
		<category><![CDATA[Amazon EMR]]></category>
		<category><![CDATA[Amazon S3]]></category>
		<category><![CDATA[Attribute-based access control]]></category>
		<category><![CDATA[authorization]]></category>
		<category><![CDATA[AWS Key Management Service (KMS)]]></category>
		<category><![CDATA[AWS Lake Formation]]></category>
		<category><![CDATA[Big Data Platform]]></category>
		<category><![CDATA[Big Data Security Management]]></category>
		<category><![CDATA[cross-account privilege design escalation]]></category>
		<category><![CDATA[Data Lake]]></category>
		<category><![CDATA[Data Protection in Data Lakes]]></category>
		<category><![CDATA[Key management]]></category>
		<category><![CDATA[Key Management for Big Data]]></category>
		<category><![CDATA[PrincipalOrgId]]></category>
		<category><![CDATA[Resource-based policies]]></category>
		<category><![CDATA[Security Blog]]></category>
		<category><![CDATA[Security, Identity & Compliance]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=4be77477157ab5936b2faa4570cb47cb</guid>

					<description><![CDATA[This blog post shows you how to share encrypted Amazon Simple Storage Service (Amazon S3) buckets across accounts on a multi-tenant data lake. Our objective is to show scalability over a larger volume of accounts that can access the data lake, in a scenario where there is one central account to share from. Most use […]]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Control access to Amazon Elastic Container Service resources by using ABAC policies</title>
		<link>https://noise.getoto.net/2022/02/17/control-access-to-amazon-elastic-container-service-resources-by-using-abac-policies/</link>
		
		<dc:creator><![CDATA[Kriti Heda]]></dc:creator>
		<pubDate>Thu, 17 Feb 2022 17:58:35 +0000</pubDate>
				<category><![CDATA[ABAC]]></category>
		<category><![CDATA[Amazon ECS]]></category>
		<category><![CDATA[Attribute-based access control]]></category>
		<category><![CDATA[authorization]]></category>
		<category><![CDATA[AWS IAM]]></category>
		<category><![CDATA[Intermediate (200)]]></category>
		<category><![CDATA[security]]></category>
		<category><![CDATA[Security Blog]]></category>
		<category><![CDATA[Security, Identity & Compliance]]></category>
		<category><![CDATA[Tags]]></category>
		<category><![CDATA[TBAC]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=f9cc292dcc0a48112ebb6b2c9eba54e2</guid>

					<description><![CDATA[As an AWS customer, if you use multiple Amazon Elastic Container Service (Amazon ECS) services/tasks to achieve better isolation, you often have the challenge of how to manage access to these containers. In such cases, using tags can enable you to categorize these services in different ways, such as by owner or environment. This blog […]]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Configure AWS SSO ABAC for EC2 instances and Systems Manager Session Manager</title>
		<link>https://noise.getoto.net/2022/01/12/configure-aws-sso-abac-for-ec2-instances-and-systems-manager-session-manager/</link>
		
		<dc:creator><![CDATA[Rodrigo Ferroni]]></dc:creator>
		<pubDate>Wed, 12 Jan 2022 20:24:51 +0000</pubDate>
				<category><![CDATA[ABAC]]></category>
		<category><![CDATA[Advanced (300)]]></category>
		<category><![CDATA[Attributes]]></category>
		<category><![CDATA[AWS Single Sign-On]]></category>
		<category><![CDATA[AWS Single Sign-On (SSO)]]></category>
		<category><![CDATA[AWS SSO]]></category>
		<category><![CDATA[Best practices]]></category>
		<category><![CDATA[SAML]]></category>
		<category><![CDATA[Tags]]></category>
		<category><![CDATA[Technical How-to]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=1cd4f293537530e997bda5d967430b43</guid>

					<description><![CDATA[In this blog post, I show you how to configure AWS Single Sign-On to define attribute-based access control (ABAC) permissions to manage Amazon Elastic Compute Cloud (Amazon EC2) instances and AWS Systems Manager Session Manager for federated users. This combination allows you to control access to specific Amazon EC2 instances based on users’ attributes. I show […]]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Implement tenant isolation for Amazon S3 and Aurora PostgreSQL by using ABAC</title>
		<link>https://noise.getoto.net/2021/07/13/implement-tenant-isolation-for-amazon-s3-and-aurora-postgresql-by-using-abac/</link>
		
		<dc:creator><![CDATA[Ashutosh Upadhyay]]></dc:creator>
		<pubDate>Tue, 13 Jul 2021 17:17:16 +0000</pubDate>
				<category><![CDATA[ABAC]]></category>
		<category><![CDATA[Amazon Aurora]]></category>
		<category><![CDATA[Amazon S3]]></category>
		<category><![CDATA[Amazon Simple Storage Services (S3)]]></category>
		<category><![CDATA[Attribute-based access control]]></category>
		<category><![CDATA[AWS IAM]]></category>
		<category><![CDATA[Identity and Access Management]]></category>
		<category><![CDATA[Intermediate (200)]]></category>
		<category><![CDATA[multitenancy]]></category>
		<category><![CDATA[Multitenant architecture]]></category>
		<category><![CDATA[PostgreSQL]]></category>
		<category><![CDATA[SaaS]]></category>
		<category><![CDATA[Security Blog]]></category>
		<category><![CDATA[Security, Identity & Compliance]]></category>
		<category><![CDATA[Tenant isolation]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=8760b96dcfd91268f104b6db7759f6fa</guid>

					<description><![CDATA[In software as a service (SaaS) systems, which are designed to be used by multiple customers, isolating tenant data is a fundamental responsibility for SaaS providers. The practice of isolation of data in a multi-tenant application platform is called tenant isolation. In this post, we describe an approach you can use to achieve tenant isolation […]]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>How to implement SaaS tenant isolation with ABAC and AWS IAM</title>
		<link>https://noise.getoto.net/2021/06/09/how-to-implement-saas-tenant-isolation-with-abac-and-aws-iam/</link>
		
		<dc:creator><![CDATA[Michael Pelts]]></dc:creator>
		<pubDate>Wed, 09 Jun 2021 16:10:14 +0000</pubDate>
				<category><![CDATA[ABAC]]></category>
		<category><![CDATA[Attribute-based access control]]></category>
		<category><![CDATA[AWS Identity and Access Management (IAM)]]></category>
		<category><![CDATA[Expert (400)]]></category>
		<category><![CDATA[ISV]]></category>
		<category><![CDATA[multitenancy]]></category>
		<category><![CDATA[Multitenant architecture]]></category>
		<category><![CDATA[SaaS]]></category>
		<category><![CDATA[SaaS Identity]]></category>
		<category><![CDATA[Security Blog]]></category>
		<category><![CDATA[Security, Identity & Compliance]]></category>
		<category><![CDATA[Tenant isolation]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=445b1911a70cd8a26b70d90e213a475f</guid>

					<description><![CDATA[Multi-tenant applications must be architected so that the resources of each tenant are isolated and cannot be accessed by other tenants in the system. AWS Identity and Access Management (IAM) is often a key element in achieving this goal. One of the challenges with using IAM, however, is that the number and complexity of IAM […]]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Use tags to manage and secure access to additional types of IAM resources</title>
		<link>https://noise.getoto.net/2021/02/12/use-tags-to-manage-and-secure-access-to-additional-types-of-iam-resources/</link>
		
		<dc:creator><![CDATA[Michael Switzer]]></dc:creator>
		<pubDate>Fri, 12 Feb 2021 17:58:43 +0000</pubDate>
				<category><![CDATA[ABAC]]></category>
		<category><![CDATA[Advanced (300)]]></category>
		<category><![CDATA[Attribute-based access control]]></category>
		<category><![CDATA[AWS IAM]]></category>
		<category><![CDATA[AWS Identity and Access Management]]></category>
		<category><![CDATA[AWS Identity and Access Management (IAM)]]></category>
		<category><![CDATA[Security Blog]]></category>
		<category><![CDATA[Security, Identity & Compliance]]></category>
		<category><![CDATA[Tagging]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=95eb0bb49ebd4bc09caa905fe35e1e35</guid>

					<description><![CDATA[AWS Identity and Access Management (IAM) now enables Amazon Web Services (AWS) administrators to use tags to manage and secure access to more types of IAM resources, such as customer managed IAM policies, Security Assertion Markup Language (SAML) providers, and virtual multi-factor authentication (MFA) devices. A tag is an attribute that consists of a key […]]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
	</channel>
</rss>

<!--
Performance optimized by W3 Total Cache. Learn more: https://www.boldgrid.com/w3-total-cache/

Object Caching 39/236 objects using Memcached
Page Caching using Disk: Enhanced 
Lazy Loading (feed)
Database Caching using Memcached

Served from: noise.getoto.net @ 2025-12-05 09:21:33 by W3 Total Cache
-->