AWS Elastic Beanstalk security

Cloud security at AWS is the highest priority. As an AWS customer, you benefit from a data center and network architecture that is built to meet the requirements of the most security-sensitive organizations.

Security is a shared responsibility between AWS and you. The Shared Responsibility Model describes this as Security of the Cloud and Security in the Cloud.

Security of the Cloud – AWS is responsible for protecting the infrastructure that runs all of the services offered in the AWS Cloud and providing you with services that you can use securely. Our security responsibility is the highest priority at AWS, and the effectiveness of our security is regularly tested and verified by third-party auditors as part of the AWS Compliance Programs. Review the AWS Services in Scope of AWS assurance programs for information as it relates to Elastic Beanstalk.

Security in the Cloud – Your responsibility is determined by the AWS service you are using, and other factors including the sensitivity of your data, your organization’s requirements, and applicable laws and regulations. This documentation is intended to help you understand how to apply the Shared Responsibility Model when using Elastic Beanstalk.

Use the following security topics to learn more about the security tasks Elastic Beanstalk is responsible for, and the security configurations you should consider when using Elastic Beanstalk to meet your security and compliance objectives.

Topics

• Data protection in Elastic Beanstalk
• Identity and access management for Elastic Beanstalk
• Logging and monitoring in Elastic Beanstalk
• Compliance validation for Elastic Beanstalk
• Resilience in Elastic Beanstalk
• Infrastructure security in Elastic Beanstalk
• Configuration and vulnerability analysis in Elastic Beanstalk
• Security best practices for Elastic Beanstalk