2018 Formal reasoning aout the security of AWS

Back to Research-Papers




Implementation challenges are discussed. Some that were interesting to me:

My thoughts

As a service that needs to deal with such sensitive data, it makes a lot of sense to be applying ideas from academia to acheive more quality in their services. Security is a vital consideration for AWS, in order to maintain customer trust. The recent changes with GDPR and other foreign data regulations like MiFID ii are very compelling reasons for companies to be moving towards formal verification of their software. Unfortunately, a lot of companies don't have the resources or time to focus on the formal verification aspect of software analysis. Perhaps as more data regulations unfold, this may become more and more of a requirement for software companies.