Earlier this month Amir Tabdili and I attended AWS re:Inforce in Philly. If you've reached full capacity for AI news/content (AI washing?), this was not the event for you. 😁 

Joking aside, the event was well organized with solid content in the area of infrastructure security. I especially enjoyed the workshops. One workshop called 𝐀𝐖𝐒 𝐆𝐚𝐦𝐞𝐃𝐚𝐲: 𝐖𝐢𝐧𝐧𝐢𝐧𝐠 𝐭𝐡𝐞 𝐃𝐃𝐨𝐒 𝐆𝐚𝐦𝐞 simulated an attack against a web site in which operators had to use WAF to prevent the malicious traffic. WAF has had significant enhancements since its launch particularly in the ability to manage rule sets at scale. AWS WAF logs offer powerful insights into the nature of traffic bound for your site.

Some quick takes on other sessions:

* 𝐍𝐈𝐒𝟑𝟎𝟐: 𝐍𝐞𝐭𝐰𝐨𝐫𝐤 𝐈𝐧𝐬𝐩𝐞𝐜𝐭𝐢𝐨𝐧 𝐃𝐞𝐬𝐢𝐠𝐧 𝐏𝐚𝐭𝐭𝐞𝐫𝐧𝐬 𝐭𝐡𝐚𝐭 𝐒𝐜𝐚𝐥𝐞 offered excellent guidance on designs for centralized ingress/egress inspection.

* 𝐍𝐈𝐒𝟑𝟕𝟑: 𝐁𝐮𝐢𝐥𝐝 𝐌𝐮𝐥𝐭𝐢𝐥𝐚𝐲𝐞𝐫𝐞𝐝 𝐍𝐞𝐭𝐰𝐨𝐫𝐤 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐅𝐨𝐫 𝐀𝐦𝐚𝐳𝐨𝐧 𝐕𝐏𝐂 was another informative workshop that highlighted the functionality of AWS Network Firewall, WAF and other security services.

* 𝐍𝐈𝐒𝟑𝟕𝟑: 𝐁𝐮𝐢𝐥𝐝 𝐌𝐮𝐥𝐭𝐢𝐥𝐚𝐲𝐞𝐫𝐞𝐝 𝐍𝐞𝐭𝐰𝐨𝐫𝐤 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐅𝐨𝐫 𝐀𝐦𝐚𝐳𝐨𝐧 𝐕𝐏𝐂 featured James Devine and Riggs Goodman III discussing the formerly taboo (for AWS events) topic of multicloud. Their coverage of Direct Connect, Cloud WAN and Transit Gateway was a thorough introduction to these services.

Unfortunately only NIS302 was recorded. Check it out on YouTube.

If you want to learn more about any of these topics or need guidance in these areas, please contact me on LinkedIn or at jeffl at konekti.us.