使用 AWS re:Post 即表示您同意 AWS re:Post 使用條款
AWS re:Postre:Post

Secure access to AWS WorkSpaces

0

I have a customer that is looking to utilize AWS WorkSpaces for allowing user access to sensitive data as it's certified for IRAP and PROTECTED workloads in Australia.

He is looking to limit the access to the WorkSpaces to only users coming in over AWS Client VPN but is concerned at the lack of compliance information around Client VPN and it not being listed in the IRAP certification.

Is there any information to share around Client VPN compliance or an alternative solution?

Happy to hear any and all thoughts.

主題
終端使用者運算
標籤
Amazon WorkSpaces
語言
English
AWS-User-4230713
已提問 5 年前檢視次數 867 次
1 個回答
0
已接受的答案

AWS Client VPN / a DX do not add any security improvement. WorkSpaces gateways are public, so any traffic that traverses a private connection would need to egress their network to connect to our public edge. Also, streaming traffic, for WorkSpaces, is AES 256 bit encrypted. I would suggest you look at some of the functions to limit connectivity to WorkSpaces. Things like Certificate based auth and IP allowlisting can allow them to limit the specific devices that can access their WorkSpaces as well as where they can connect from.

專家
Justin_S
已回答 5 年前

您尚未登入。 登入 去張貼答案。

一個好的回答可以清楚地回答問題並提供建設性的意見回饋,同時有助於提問者的專業成長。

回答問題指南

相關內容