IAM Unhinged

Presented at LayerOne 2017, May 27, 2017, 2 p.m. (60 minutes).

You may think this talk is just a cleverly disguised ruse to make as many IAM puns as is humanly possible. And you’d be correct. You should in no way mistake it for an attempt to distill, in as short a period as possible, an understanding of Amazon Web Services API security policy documents. Nor should you confuse it with a brief evaluation of the sorry state of predefined AWS policies. Whatever you do, you should not assume that I’ll spend any time meditating on the utter unmitigated disaster that is most people’s policy stack (Hint: there’s a fair bit of *FullAccess in there).

Presenters:

• Jason Ritzke / Rtzq0   as Jason Ritzke
  Jason Ritzke is a senior system engineer with Taos. He specializes in secure, effective deployments of open-source software that help businesses and individuals achieve their goals and dreams. He helps run DC562 and is a maintainer of the Reclass external node classifier.

Links:

• https://infocon.org/cons/LayerOne/LayerOne 2017/IAM Unhinged (Jason Ritzke).mp4
• https://www.youtube.com/watch?v=fz48ElzWBJ8

Similar Presentations:

• ToorCamp 2016 / The Good the Bad and the Ugly: AWS Account Takeover via IAM Instance Roles
• SAINTCON 2019 / Identity & Access Management Why?
• BSidesDC 2019 / IAM what IAM and dats what IAM: accounts for everyone! Robots too!