Amazon Web Services (AWS) has announced the general availability of its new security tool, AWS Verified Access, which aims to solve security issues related to remote work without the need for a virtual private network (VPN). The tool provides granular control over access to various apps and services, with third-party integrations, such as Okta, already confirmed. The company has also integrated the tool with AWS Web Application Firewall (WAF), allowing for filtering of common exploits like SQL injection and cross-site scripting, while still maintaining granular access control.
Verified Access also includes a feature that allows signed identity context to be passed to application endpoints, enabling personalization without the need for re-authentication. While customers have already migrated to Verified Access during the preview stage, AWS notes that some customers may find the transition more challenging than expected. The company provides guidance on migrating to AWS Verified Access, including two common use cases: AWS Site-to-Site VPN and an internet-facing corporate application.
With remote work becoming increasingly popular, cybersecurity threats have risen, making it crucial for companies to ensure their remote work solutions are secure. AWS Verified Access is customizable and provides businesses with the granular control needed to ensure security while enabling the personalization of applications. The tool’s integration with AWS WAF and the ability to pass signed identity context to endpoints add an extra layer of protection and convenience. While the migration process may not be easy for all customers, AWS provides guidance for a successful transition to the new solution.
