Blog Posts

Check out our research and insights!

Subscribe to stay up to date on cloud data security and our work.

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
The State of AWS's Block Public Access: Is It Secure By Default?

A look at Amazon Web Services's Block Public Access feature across AWS services such as EC2, S3, EMR, DynamoDB and how secure by default principles apply to account configuration to add additional layers of security as well as best practices for configuration.

Amazon S3 Block Public Access Bypass

A scenario with Amazon S3 where S3's Block Public Access Check can be circumvented to make a S3 Bucket public.

The Misleading Encryption State of Amazon Quantum Ledger Database (QLDB)

Research on AWS's Quantum Ledger Database and the misleading reporting of at-rest data encryption. Misleading reporting from encryption status may result in false positives for security and compliance of the QLDB and cause issues for security and application teams.

want to talk Cloud data security?