November 28, 2023 at 09:06AM
Amazon Web Services (AWS) has announced Amazon One Enterprise, a palm-based identity service for accessing physical and digital assets. It enables secure access to locations such as offices and data centers, as well as digital resources like HR records. The palm-recognition technology boasts 99.9999% accuracy and cannot be replicated or used for impersonation. AWS also revealed new security features and capabilities, including controls to meet data sovereignty requirements and tools to simplify IAM permissions for EKS clusters. Amazon Detective has been enhanced to improve cloud security investigations.
Key Takeaways:
1. AWS has announced Amazon One Enterprise, a new palm-based identity service that allows secure access to physical locations and digital assets. Amazon One has already been available for identification, payment, and entry at Whole Foods Market stores, and now it is being expanded to enterprises.
2. Amazon One Enterprise is a fully managed enterprise access control service that can be used for entry into various secured locations like offices, residential buildings, data centers, hotels, airports, and educational institutions. It also allows access to digital resources such as HR records and financial data.
3. The biometric identification device used in Amazon One combines palm and vein imagery for highly accurate biometric matching, with an accuracy rate of 99.9999%. The palm recognition technology uses advanced artificial intelligence and machine learning to create a unique palm signature that cannot be replicated or used for impersonation.
4. Amazon One Enterprise is currently available in preview in the United States and is already being used by major organizations.
5. In addition to the announcement of Amazon One Enterprise, AWS has introduced several new security features and capabilities. This includes AWS Control Tower controls for meeting digital sovereignty requirements, IAM Access Analyzer features for monitoring unused permissions and custom policy checks, Amazon EKS Pod Identity for simplifying IAM permissions on EKS clusters, Amazon GuardDuty ECS Runtime Monitoring for detecting runtime security issues in ECS clusters, and enhanced capabilities in Amazon Detective for improving cloud security investigations.
6. AWS is continuously evolving its security offerings to provide enhanced security and access control solutions for organizations using its cloud services.