Hacker News new | ask | show | jobs
by cyberax 268 days ago
Regular individual systems that run the code inside the AWS generally do not have long-lived tokens. The credentials are ultimately _pushed_ to the systems running the services by a small set of highly secured and monitored privileged systems.

You get to see that even with the regular public AWS/EC2. Instance roles are managed externally from the customers' points of view.
1 comments
otabdeveloper4 267 days ago
> highly secured and monitored privileged systems

So, ultimately "keys to the castle" aka a long password?

link
cyberax 267 days ago
It's a bit more complicated :) There are HSMs and code signing thrown into the mix. They went into total overengineering mode when designing it.

But ultimately, any realistic design will eventually have systems that have to be trusted. It's just a question of isolating them.

link