Confidentiality, Integrity, Authorization

Confidentiality, Identity, Availability

Confidentiality, Integrity, Availability

Confidentiality, Integration, Access

Encryption and Access Control Lists (ACLs)

Hashing and Logging

Usernames and Passwords

Firewalls and Antivirus Software

To validate the integrity of data

To ensure data availability

To encrypt data

To control user access

To manage services and edit resources

To protect them from accidental exposure and unauthorized use

To ensure that users have only the permissions they need

To log into the AWS management console

To give users more permissions than they need

To ensure that users have only the permissions they need, and no more

To frequently change user permissions

To monitor user activity continuously

A set of credentials used to authenticate with AWS resources

A password policy

An entity that can take an action on an AWS resource

A multi-factor authentication device

Enabling a password policy for all IAM users

Creating an IAM user and attaching the AdministratorAccess policy

Using the root user for routine administrative tasks

Requiring an administrator to reset an expired password