![]() ![]() All protections against ATT&CK techniques are provided by the lower-level services evaluated by and referenced in those reports. This control was not mapped because AWS Artifact provides access to reports and information but does not protect against any ATT&CK techniques. Agreements available include the Business Associate Addendum (BAA) and the Nondisclosure Agreement (NDA). Available reports include Service Organization Control (SOC) reports, Payment Card Industry (PCI) reports, and certifications from accreditation bodies across geographies and compliance verticals that validate the implementation and operating effectiveness of AWS security controls. This full set of resources is available on the Center’s project page.Īggregate Navigator Layer For All Controls (JSON) ContentsĪWS Artifact is a central resource that provides on-demand access to AWS's security and compliance reports and online agreements. ![]() ![]() These mappings are part of a collection of mappings of native product security controls to ATT&CK based on a common methodology, scoring rubric, data model, and tool set. ![]() These mappings of the Amazon Web Services (AWS) security controls to MITRE ATT&CK® are designed to empower organizations with independent data on which native AWS security controls are most useful in defending against the adversary TTPs that they care about. GitHub Amazon Web Services Security Control Mappings to MITRE ATT&CK® ![]()
0 Comments
Leave a Reply. |