AWS Open Source Blog
Category: Security, Identity, & Compliance
From Data Chaos to Cohesion: How OCSF is Optimizing Cyber Threat Detection
With the release of version 1.3.0, the Open Cybersecurity Schema Framework (OCSF) introduces several enhancements designed to further standardize and help streamline cybersecurity data management. OCSF is a collaborative, open source effort by AWS and leading partners in the cybersecurity industry, which provides a standard schema for common security events, defines versioning criteria to facilitate […]
Lean Into Verified Software Development
We built a formal model of Cedar in Lean, and proved that Cedar’s components satisfy key safety and security properties.
Two New Open Source Rust Crates Create Easier Cedar Policy Management
Developers using the Cedar SDK can use two new open source Rust crates, cedar-local-agent and avp-local-agent, to reduce their development burden and ease policy management tasks.
How Open Source Projects are Using Kani to Write Better Software in Rust
AWS open source project Kani is succeeding in changing the perception, effectiveness, and usability of verification tools that were previously thought to be cumbersome or beyond reach.
Celebrating One Year of OCSF: Simplifying Security Telemetry for a Stronger Defense
On the one-year anniversary of the Open Cybersecurity Schema Framework (OCSF) project, we’re thrilled to announce the release of OCSF v1.0.0 and reflect on the milestones we’ve achieved and the positive impact OCSF has had on the security industry.
Configure Keycloak on Amazon Elastic Kubernetes Service (Amazon EKS) using Terraform
Learn how to configure open source Keycloak on Amazon Elastic Kubernetes Service (Amazon EKS) using Terraform to manage an open source application in AWS.
Simplify Amazon EKS Multi-Cluster Authentication with Open Source Pinniped
Learn how to streamline Amazon Elastic Kubernetes Service (EKS) multi-cluster authentication using open source Pinniped and Okta as an identity provider.
Announcing Snapchange: An Open Source KVM-backed Snapshot Fuzzing Framework
Today we are happy to announce Snapchange, a new open source fuzzing tool from the AWS Find and Fix (F2) open source security research team.
AWS Teams with OSTIF on Open Source Security Audits
AWS will be directly funding $500,000 to the Open Source Technology Improvement Fund (OSTIF) as a portion of our ongoing investments in supply chain security.
A Container-Free Way to Configure Kubernetes Using AWS Lambda
Learn how to access the Kubernetes API from an AWS Lambda function entirely in code, without the need to build a container image with executables. This provides a simple approach to create your Lambda functions, and also a faster execution time.