with. AWS does not hesitate to challenge orders from law enforcement if we think the orders lack a solid basis. Data isolation Does the cloud provider adequately isolate customer data? All data stored by AWS on behalf of customers has strong tenant isolation security and control capabilities. Amazon S3 provides advanced data access controls. Please see the AWS security whitepaper for more information about specific data services’ security. Composite services Does the cloud provider layer its service with other providers’ cloud services? AWS does not leverage any third-party cloud providers to deliver AWS services to customers. Physical and environmental controls Are these controls operated by the cloud provider specified? Yes. These are specifically outlined in the SOC 1 Type II report. In addition, other certifications AWS supports such as ISO 27001 and FedRAMP sm require best practice physical and environmental controls. Client-side protection Does the cloud provider allow customers to secure and manage access from clients, such as PC and mobile devices? Yes. AWS allows customers to manage client and mobile applications to their own requirements. Server security Does the cloud provider allow customers to secure their virtual servers? Yes. AWS allows customers to implement their own security architecture. See the AWS security whitepaper for more details on server and network security. Identity and Access Management Does the service include IAM capabilities? AWS has a suite of identity and access management offerings, allowing customers to manage user identities, assign security credentials, organize users in groups, and manage user permissions in a centralized way. Please see the AWS web site for more information. Scheduled maintenance outages Does the provider specify when systems will be brought down for maintenance? AWS does not require systems to be brought offline to perform regular maintenance and system patching. AWS’ own maintenance and system patching generally do not impact customers. Maintenance of instances themselves is controlled by the customer. Capability to scale Does the provider allow customers to scale beyond the original agreement? The AWS cloud is distributed, highly secure and resilient, giving customers massive scale potential. Customers may scale up or down, paying for only what they use.
Amazon Web Services – AWS Answers to Key Compliance Questions Page 6 Category Cloud Computing Question AWS Information Service availability Does the provider commit to a high level of availability? AWS does commit to high levels of availability in its service level agreements (SLA). For example, Amazon EC2 commits to annual uptime percentage of at least 99.95% during the service year. Amazon S3 commits to monthly uptime percentage of at least 99.9%. Service credits are provided in the case these availability metrics are not met.
You've reached the end of your free preview.
Want to read all 12 pages?
- One '18
- AWS, AWS Answers