Open utterances-bot opened 4 years ago
You've really missed some basic aspects to approaching endpoint security here.
Sponsored? Please be serious.
@aardvarq Let's be serious, You spent time writing that comment without saying anything. Are you talking about VPC? Or what are you talking about?
Sorry but there is too much faff in here. There are several third party services that can protect your endpoints against abusive users. Not all solutions have to be 100% based on AWS services.
@luminousmen Using API key is the least secure way of safe guarding APIs. In fact, AWS has provided multiple solutions for securing APIs such as Lambda authorisers and/or AWS Cognito.
@aussiearef, thanks for your comments! In the post, I don't talk about security in terms of unauthorized access. You are right - of course, there different ways to create authorization and authentication on/off AWS, but I'm talking about specific attacks - DDoS. As far as I know, Lambda authorizes and Cognito doesn't provide any protection from denial of service attacks, am I wrong?
AWS Lambda abuse - Blog | luminousmen
We are investigating possible ways to keep our application on AWS Lambda up and running under DDoS attack.
https://luminousmen.com/post/aws-lambda-abuse