Life Sciences

Navigating GDPR Compliance on AWS

Issue link:

Contents of this Issue


Page 13 of 31

Amazon Web Services Navigating GDPR Compliance on AWS 9 Multi-Factor-Authentication For extra security, you can add two-factor authentication to your account and to individual user accounts. With multi-factor authentication (MFA) enabled, when you sign into an AWS website, you are prompted for your user name and password (the first factor), as well as an authentication response from your AWS MFA device (the second factor). You can enable MFA for your AWS account and for individual IAM users you have created in your account. You can also use MFA to control access to AWS service APIs. For example, you can define a policy that allows full access to all AWS API operations in Amazon EC2, but explicitly denies access to specific API operations—such as StopInstances and TerminateInstances—if the user is not authenticated with MFA. Figure 1 – Require MFA for specific Amazon EC2 API operations

Articles in this issue

view archives of Life Sciences - Navigating GDPR Compliance on AWS