Explore the hidden risks of managing identities and access in multi-cloud environments through this 41-minute Black Hat conference talk. Uncover access flaws and misconfigurations that attackers can exploit to gain unauthorized access to sensitive information. Delve into the inner workings of various cloud providers' Identity and Access Management (IAM) layers, highlighting key differences between services. Learn how inconsistent entitlements across cloud resources can lead to unintended access and how shared responsibility model confusion enables privilege escalation. Gain insights into AWS managed policies, Azure managed policies, GCP basic roles, cloud platform access scope, and logging limitations. Discover practical strategies to limit mistakes, build proper permissions, and enhance security in multi-cloud setups. Witness a demonstration and walk away with actionable knowledge to improve your organization's cloud security posture.
Overview
Syllabus
Intro
Context
Identity
Permissions
Nonhuman identities
Hybrid identities
AWS managed policies
Azure managed policies
GCP basic roles
Cloud Platform Access Scope
Logging Limits
Azure Logs
MultiCloud Conclusion
What Can We Do
Limit Mistakes
Building Permissions
AccessUndenight
Demo
Conclusion
Taught by
Black Hat
