Season 4 Episode 25: Certificates, MFA, and Australian Investments

In Season 4, Episode 25, Karl and Jon are joined by AWS Community Hero Stephen Sennett. They discuss recent AWS security enhancements and active defense measures, including the introduction of exportable public SSL/TLS certificates from AWS Certificate Manager, the enforcement of 100% MFA for AWS root users, and Amazon Inspector’s new code security feature. The conversation also covers AWS’s $20 billion investment in Australian data center infrastructure. The episode wraps up with a light-hearted segment where the hosts compare their sports tape collections, each trying to outdo the other with increasingly outrageous injury stories.

05:45 - AWS improves active defense to empower customers 

This article discusses AWS's internal security tools like Madopt, Mythroat, and Sonaris, which help protect customers at scale. It highlights the decreasing trend in global malicious vulnerability exploit attempts and emphasizes AWS's ability to provide security measures that individual organizations cannot match.

16:40 - AWS Certificate Manager introduces exportable public SSL/TLS certificates

AWS now offers exportable public SSL/TLS certificates at competitive prices ($15 for single domain, $150 for wildcard). This new feature allows for end-to-end encryption within the AWS ecosystem and provides a more cost-effective and manageable solution compared to traditional certificate authorities.

26:14 - AWS enforces 100% MFA for root users

AWS has achieved 100% MFA enforcement for root users, addressing a long-standing security concern. This change alters the login flow for new accounts, requiring MFA setup before access is granted. The guys also discusse the importance of hardware MFA solutions for organizations.

35:48 - Amazon Inspector launches code security feature 

Amazon Inspector now includes a code security feature that scans code for vulnerabilities and security issues. While not as comprehensive as some existing tools, it provides a convenient option for AWS customers who want to keep their security tooling within the AWS ecosystem.

42:32 - AWS invests $20 billion in Australian data center infrastructure 

AWS is investing $20 billion AUD (about $12.8 billion USD) to expand its data center infrastructure in Australia. This investment aims to strengthen Australia's AI capabilities, improve renewable energy usage, and address data sovereignty concerns. The article also mentions AWS's commitment to training 400,000+ people in Australia in cloud skills since 2017.