aws-samples/aws-security-reference-architecture-examples v3.1.0

on GitHub

What's Changed

Here are the major updates in Version 3:

1. Terraform Support: Introducing Terraform support, providing you with an additional deployment option for the AWS SRA code library. For environments that harness its capabilities to deploy cloud infrastructure, you can now deploy the code library using the new SRA Terraform edition.
2. Install Option for AWS Organization Environments: Tailored for AWS Organization account environments without AWS Control Tower, our new installation option ensures compatibility and flexibility across various organizational structures, empowering you to secure your environments effectively.
3. AWS Config Deployment for Organization Environments: Ensure compliance and governance across your AWS Organization environments without AWS Control Tower by deploying AWS Config. Easily track changes to your AWS resources and maintain a history of configurations for audit purposes.
4. Easy Setup with CloudFormation: Say goodbye to complexity with the new Easy Setup option! Utilizing a single AWS CloudFormation template, you can now simplify the deployment process for the SRA code library CloudFormation edition, streamlining your setup and configuration.
5. Amazon Inspector Solution: Seamlessly enable vulnerability assessments and security compliance checks with the deployment of Amazon Inspector solution into your AWS environment.
6. Amazon Detective Solution: Effortlessly deploy the Amazon Detective solution to investigate and identify the root cause of security findings within your AWS environment.
7. AWS Shield Advanced Solution: Enhance DDoS protection for your AWS applications seamlessly by deploying the AWS Shield Advanced solution into your environment.
8. AMI Bakery Feature: Say hello to the AMI bakery feature! This automated process for building and managing standard hardened Amazon Machine Image (AMI) images ensures consistency and security across your AWS instances, simplifying deployment and maintenance tasks.

There were many more minor updates not listed here.
Full Changelog: https://github.com/aws-samples/aws-security-reference-architecture-examples/blob/main/CHANGELOG.md

New Contributors

We're excited to highlight that some major updates were made possible by the contributions from the internal community at AWS. These contributions showcase their dedication and expertise in enhancing the AWS SRA code library to better meet your security needs:

• AMI Bakery solution from Kinyasi Monyi @knmaws and David Bailey - #203
• Terraform Support from Thanh Nguyen @tnguye001 - #204