An Automated Approach to Identifying and Mitigating Least Privilege Violations in AWS IAM Policies

  • Unique Paper ID: 164686
  • Volume: 10
  • Issue: 12
  • PageNo: 2353-2359
  • Abstract:
  • The research presents an automated tool to identify violations of the principle of least privilege in AWS Identity and Access Management (IAM) policies. The tool scans all IAM policies within an AWS account or a single policy file, analyzing policy documents to identify potentially risky permissions. It uses the Boto3 library and Python programming language to retrieve policy information and assess permissions. The analysis results are presented in an HTML report, providing an intuitive triage worksheet for security professionals. This tool contributes to automating security practices in cloud environments, enhancing efficiency and decision-making.

Cite This Article

  • ISSN: 2349-6002
  • Volume: 10
  • Issue: 12
  • PageNo: 2353-2359

An Automated Approach to Identifying and Mitigating Least Privilege Violations in AWS IAM Policies

Related Articles