AWS announces EC2 instance attestation
16 hours ago
- #EC2
- #Security
- #AWS
- AWS announces general availability of EC2 instance attestation.
- Helps customers validate trusted software on EC2 instances, including those with AI chips and GPUs.
- Previously, no way to verify if EC2 instances had removed operator access configurations.
- Now, customers can cryptographically verify trusted configurations and software.
- Powered by Nitro Trusted Platform Module (NitroTPM) and Attestable Amazon Machine Images (AMIs).
- Customers can build AMIs with cryptographic measurements for verification.
- Integrates with AWS Key Management Service (KMS) to restrict key operations based on attestation.
- Available in all AWS Commercial Regions, including AWS GovCloud (US) Regions.
- User guides provided for getting started and building Amazon Linux 2023 Attested AMIs.