Amazon Detective is on the Case, Aided by Machine Learning Amazon Web Services has announced Amazon Detective, a new security tool that uses machine learning and other technologies to improve sleuthing. The company announced that Amazon Detective, a new service in Preview, makes it easy to analyze and investigate, and quickly identify root causes of potential security issues. Amazon Detective automatically collects log data and uses machine learning, statistical analyses, and graph theory. This allows you to conduct faster and more efficient security investigations. [Click on the image to see a larger view.] How Amazon Detective Works (source :AWS). It will be available in select regions of AWS, including the US-East, US-West, Oregon, US-East, US-East, and US-West (Ohio), as well as the EU (Ireland) and Asia Pacific (Tokyo) previews. AWS stated that Amazon Detective can analyze trillions from multiple data sources, including AWS CloudTrail, Virtual Private Cloud (VPC), Flow Logs, and Amazon GuardDuty. It automatically creates an interactive, unified view of your resources, users, interactions, and their relationships over time. “With this unified view you can visualize all details and context in one location to identify the underlying causes for the findings, drill into relevant historical activities and quickly determine the root cause. AWS stated that the tool offers easy-to-use visualizations that can be used to answer questions such:

  • “Is it normal for this role have so many failed API calls?”
  • “Is this a sudden spike in traffic?”

You can find complete documentation here.

Related Posts

Drive Letters

By Val Bakh 2.4.1 Drive letters (part 1)Disk drives can be referred to using alphabet letters. Drives A and C were used commonly for floppy disk drives….

Drive Letters (Part 2)

By Val Bakh 2.4.2 Drive letters (part 2) In the first part, we covered the basics of drive letter assignment and the changes that Windows Vista has…

Activation Part 2

2.2.2 A product code in an answer file. Let’s say you have a WIM image of Windows 7 Enterprise and a Multiple Activation Key (MAK). How do…

Activation Part 1

By Val Bakh2.2 Activation 2.2.1 Volume activation Every Windows 7 installation must be activated. It is a legal requirement to ensure that the operating system is properly…

Microsoft Vista Tips and Tricks

By Val Bakh 1. Vista 1.1. Boot architecture All Windows versions that are designed for business, starting with Windows NT include built-in support to multiboot configurations. Multiple…

Multicloud Storage Service Spans AWS Microsoft Azure Nimble Storage Inc. has today launched a beta offering that claims to be the only enterprise-grade multicloud block store service for Amazon Web Services Inc. (AWS), and Microsoft Azure public cloud. The product is called Nimble Cloud Volumes, and its enterprise-grade availability as well as data services can be used to help organizations move new types enterprise apps to the cloud. Nimble Storage believes that the first wave cloud apps will be mostly content-centric, native Web and mobile apps. They lack enterprise-friendly features like data durability and data services such as snapshots, and the ability to share the same volumes with multiple hosts. The next wave of cloud applications comprises traditional transactional-centric workloads — like transactional databases — moving to the public cloud space, with stringent storage requirements. The company stated that NCV flash-based storage could provide enterprise functionality, opening up new frontiers. It also offers other benefits, such as the elimination of cloud vendor lock-in, better data reliability, and uninterrupted data access. Ajay Singh, a senior executive at AWS, stated that the NCV service delivers flash storage volumes or block storage to AWS EC2 instances and Azure Virtual machines. It offers significant advantages over native cloud block storage services such as Amazon EBS and Azure Disk Volumes. The company highlighted the following three main benefits of the new NCV service:

Data mobility between public clouds or on-premises datacenters is easy without large data egress fees. Global visibility and predictive analytics allow for information such as usage history,…