Usando AWS re:Post, accetti AWS re:Post Termini di utilizzo
AWS re:Postre:Post

Secure access to AWS WorkSpaces

0

I have a customer that is looking to utilize AWS WorkSpaces for allowing user access to sensitive data as it's certified for IRAP and PROTECTED workloads in Australia.

He is looking to limit the access to the WorkSpaces to only users coming in over AWS Client VPN but is concerned at the lack of compliance information around Client VPN and it not being listed in the IRAP certification.

Is there any information to share around Client VPN compliance or an alternative solution?

Happy to hear any and all thoughts.

Argomenti
Informatica per l'utente finale
Tag
Amazon WorkSpaces
Lingua
English
AWS-User-4230713
posta 5 anni fa867 visualizzazioni
1 Risposta
0
Risposta accettata

AWS Client VPN / a DX do not add any security improvement. WorkSpaces gateways are public, so any traffic that traverses a private connection would need to egress their network to connect to our public edge. Also, streaming traffic, for WorkSpaces, is AES 256 bit encrypted. I would suggest you look at some of the functions to limit connectivity to WorkSpaces. Things like Certificate based auth and IP allowlisting can allow them to limit the specific devices that can access their WorkSpaces as well as where they can connect from.

ESPERTO
Justin_S
con risposta 5 anni fa

Accesso non effettuato. Accedi per postare una risposta.

Una buona risposta soddisfa chiaramente la domanda, fornisce un feedback costruttivo e incoraggia la crescita professionale del richiedente.

Linee guida per rispondere alle domande

Contenuto pertinente