obriensystems
commented
3 years ago cloudtrail: compliance, governance, auditing, risk analysis, change tracking
Open obriensystems opened 3 years ago
obriensystems
commented
3 years ago cloudtrail: compliance, governance, auditing, risk analysis, change tracking
Formal review of the 13 security controls - where we add CB_SP specific API and where we leverage ISED, SCED, SEA common enablers Due week of July 5th - pushed to morning of 23 July https://wiki.ised-isde.canada.ca/display/DTSSBLSD/AWS+Event+Driven+Architecture#AWSEventDrivenArchitecture-SecurityReview https://wiki.ised-isde.canada.ca/display/DTSSBLSD/AWS+Event+Driven+Architecture#AWSEventDrivenArchitecture-SecurityFlows
Security flows Breakdown
(copy of Use Case flow from #7 ) Counsel loads portal site Counsel tests bandwidth for s3 upload via portal Counsel selects either browser based or cli/client based upload depending on mbps speed and/or volume of data Counsel optionally zips entire fileset Counsel initiates an s3 upload transaction via portal or cli/client Counsel waits for upload to complete/retry/stream - gets submission receipt System notifies MINU of upload MINU loads internal/admin portal site MINU selects transaction for download/deletion-from-s3 MINU tests bandwidth for S3 download via portal MINU initiates an S3 download transaction via portal or cli/client to be stored TBD in ISED MINU waits for download to complete/retry/stream - gets download receipt Counsel selects either browser based or cli based upload depending on mbps speed and/or volume of data MINU deletes transaction files from S3 via portal