A lot of the security in AWS is actually configuration and just having the correct architecture in place. So, it's important to understand some of these security terms:
- Security and transit: Think of this as HTTPS SSL. If you think about a web browser, you would have the padlock in your browser to show that the communication is secure, for example, when you're accessing any of your online banking systems.
- Security at rest: This is the data that's encrypted in the database or filesystem. Only a user with the key has access to the data.
- Authentication: This refers to the process to confirm whether a user or system is who they are meant to be.
- Authorization: Once you're authenticated, the system checks for correct authorization. This is to check that the permissions and access controls are in place for you to access the specific AWS resources.