Aws Iot Device Defender

Aws iot device defender detects unusual device behaviors that may be indicative of a compromise by continuously monitoring high value security metrics from the device and aws iot core e g the number of listening tcp ports on your devices or authorization failure counts.

Aws iot device defender.

Using aws iot device defender you can access device defender s features from the aws iot console cli or via a full set of apis. With aws iot device defender you can enforce consistent iot configurations across your aws iot device fleet and respond quickly when devices are compromised. An agent on each device is responsible for collecting device metrics and sending them to device defender. It gives you the ability to enforce consistent security policies across your aws iot device fleet and respond quickly when devices are compromised.

You can run audits on a continuous or ad hoc basis. Aws iot device defender comes with security best practices that you can select and run as part of the audit. Audit monitors your device related policies certificates and other resources to ensure that the proper security configuration is in place. Aws iot device defender audits iot configurations associated with your devices against a set of defined iot security best practices so you know exactly where you have security gaps.

Devices can send metrics at 5 minute to 48 hour intervals. With aws iot device defender you pay only for what you use and there are no minimum fees or mandatory service usage.