Security Stack Mappings – Amazon Web Services

Project Summary

Published : Sep 21, 2021

This project empowers organizations with independent data on which native AWS security controls are most useful in defending against the adversary TTPs that they care about. It achieves this by mapping security capabilities of AWS to the ATT&CK techniques that they can protect, detect, or respond to. This will allow organizations to make threat-informed decisions when selecting which native security capabilities to use to protect their workloads.

Problem

Users of AWS lack a comprehensive view of how native AWS security controls defend against real-world adversary TTPs.

SOLUTION

Map the effectiveness of each AWS security control against specific ATT&CK techniques.

IMPACT

Empowers defenders with independent assessments of which AWS controls are effective to mitigate relevant adversary TTPs.

Security Stack Mappings – Amazon Web Services

Security Stack Mappings – Amazon Web Services

Project Summary

Problem

SOLUTION

IMPACT

Project Resources:

funding Research Participants

Non-Profit Research Participants

Share this project

Explore More of Our Work

Cloud Analytics

Security Stack Mappings – Google Cloud Platform

Top ATT&CK Techniques