{"id":1167,"date":"2024-11-13T17:39:03","date_gmt":"2024-11-13T09:39:03","guid":{"rendered":"https:\/\/aws-oncloudai.com\/?p=1167"},"modified":"2025-01-20T14:37:13","modified_gmt":"2025-01-20T06:37:13","slug":"aws-iam-the-key-to-securing-your-cloud-infrastructure","status":"publish","type":"post","link":"https:\/\/aws-oncloudai.com\/ko\/aws\ub294-\ud074\ub77c\uc6b0\ub4dc-\uc778\ud504\ub77c-\ubcf4\uc548\uc758-\ud575\uc2ec\uc785\ub2c8\ub2e4\/","title":{"rendered":"AWS IAM: \ud074\ub77c\uc6b0\ub4dc \uc778\ud504\ub77c\ub97c \ubcf4\ud638\ud558\ub294 \ud575\uc2ec"},"content":{"rendered":"<p>\ud604\ub300 \ub514\uc9c0\ud138 \ud658\uacbd\uc5d0\uc11c\ub294 \uc778\ud504\ub77c \ubcf4\uc548\uc774 \ub9e4\uc6b0 \uc911\uc694\ud558\uba70, \ud074\ub77c\uc6b0\ub4dc \ucef4\ud4e8\ud305\uc740 \ub9ce\uc740 \uae30\uc5c5\uc758 \uae30\ubc18\uc774 \ub418\uc5c8\uc2b5\ub2c8\ub2e4. Amazon Web Services(AWS)\ub294 AWS \ub9ac\uc18c\uc2a4\uc5d0 \ub300\ud55c \uc0ac\uc6a9\uc790 \uc561\uc138\uc2a4\ub97c \uad00\ub9ac\ud558\ub294 \ub370 \ub3c4\uc6c0\uc774 \ub418\ub294 \uac15\ub825\ud55c ID \ubc0f \uc561\uc138\uc2a4 \uad00\ub9ac(IAM) \ub3c4\uad6c\ub97c \uc81c\uacf5\ud569\ub2c8\ub2e4. \uc774 \ube14\ub85c\uadf8\uc5d0\uc11c\ub294 AWS IAM\uc758 \uc138\uacc4\ub97c \uc790\uc138\ud788 \uc0b4\ud3b4\ubcf4\uace0 \uae30\ubcf8\uc801\uc778 \uc544\uc774\ub514\uc5b4, \uad8c\uc7a5 \uc808\ucc28, \uc548\uc804\ud55c \ud074\ub77c\uc6b0\ub4dc \ud658\uacbd\uc744 \ub9cc\ub4dc\ub294 \ub370 \uc5b4\ub5bb\uac8c \ub3c4\uc6c0\uc774 \ub418\ub294\uc9c0 \uc54c\uc544\ubcf4\uaca0\uc2b5\ub2c8\ub2e4. Oncloud AI\uc5d0\uc11c IAM\uc744 \uc774\ud574\ud558\ub3c4\ub85d \ub3c4\uc640\ub4dc\ub9ac\uaca0\uc2b5\ub2c8\ub2e4.<\/p>\n<h3 id=\"heading-understanding-aws-iam\" class=\"permalink-heading\">AWS IAM \uc774\ud574<\/h3>\n<p>AWS Identity and Access Management(IAM)\ub77c\ub294 \uc6f9 \uc11c\ube44\uc2a4\ub97c \uc0ac\uc6a9\ud558\uba74 AWS \ub9ac\uc18c\uc2a4\uc5d0 \ub300\ud55c \uc561\uc138\uc2a4\ub97c \uc548\uc804\ud558\uac8c \uad00\ub9ac\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \uc774\ub97c \ud1b5\ud574 \uc778\uc99d \ubc0f \uad8c\ud55c \ubd80\uc5ec\ub97c \uc911\uc559\uc5d0\uc11c \ucc98\ub9ac\ud560 \uc218 \uc788\ub294 \ubc29\ubc95\uc744 \uc81c\uacf5\ud558\uc5ec \uc2b9\uc778\ub41c \uc0ac\uc6a9\uc790 \ub610\ub294 \uc2dc\uc2a4\ud15c\ub9cc AWS \uc778\ud504\ub77c\uc5d0 \uc561\uc138\uc2a4\ud560 \uc218 \uc788\ub3c4\ub85d \ubcf4\uc7a5\ud569\ub2c8\ub2e4. IAM\uc740 \ucd5c\uc18c \uad8c\ud55c\uc758 \uc6d0\uce59\uc5d0 \ub530\ub77c \uc791\ub3d9\ud558\uba70 \uc0ac\uc6a9\uc790\uc640 \uc11c\ube44\uc2a4\uc5d0 \ud574\ub2f9 \uc5c5\ubb34\ub97c \uc218\ud589\ud558\ub294 \ub370 \ud544\uc694\ud55c \uad8c\ud55c\ub9cc \uc81c\uacf5\ud569\ub2c8\ub2e4.<\/p>\n<h3 id=\"heading-core-concepts-of-aws-iam\" class=\"permalink-heading\">AWS IAM \ud575\uc2ec \uac1c\ub150<\/h3>\n<ol>\n<li>\uc0ac\uc6a9\uc790 \u2013 IAM \uc0ac\uc6a9\uc790\ub294 \uc5f0\uacb0\ub41c \uc601\uad6c \uc790\uaca9 \uc99d\uba85\uc744 \uac00\uc9c4 \uc5d4\ud130\ud2f0\uc785\ub2c8\ub2e4. \uc774\ub4e4\uc740 AWS \ub9ac\uc18c\uc2a4\uc5d0 \uc561\uc138\uc2a4\ud574\uc57c \ud558\ub294 \uac1c\uc778\uc774\ub098 \uc870\uc9c1\uc744 \ub300\ud45c\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \ud544\uc694\uc5d0 \ub530\ub77c \uc0ac\uc6a9\uc790\uc5d0\uac8c \uad8c\ud55c\uc744 \uc124\uc815\ud558\uace0, \ubaa8\ub2c8\ud130\ub9c1\ud558\uace0, \ubd80\uc5ec\ud558\uac70\ub098 \uc81c\uac70\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/li>\n<li>\uadf8\ub8f9 \u2013 IAM \uadf8\ub8f9\uc740 IAM \uc0ac\uc6a9\uc790\uc758 \uc9d1\ud569\uc785\ub2c8\ub2e4. \uac01 \uc0ac\uc6a9\uc790\uc5d0\uac8c \uac1c\ubcc4\uc801\uc73c\ub85c \uad8c\ud55c\uc744 \uc815\uc758\ud558\ub294 \ub300\uc2e0, \uadf8\ub8f9 \uc218\uc900\uc5d0\uc11c \uad8c\ud55c\uc744 \uc9c0\uc815\ud558\uace0 \ud544\uc694\uc5d0 \ub530\ub77c \uac1c\uc778\uc744 \ucd94\uac00\ud558\uac70\ub098 \uc81c\uac70\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \uc774\ub97c \ud1b5\ud574 \uad00\ub9ac\uac00 \ub354 \uc26c\uc6cc\uc9c0\uace0 \ubaa8\ub4e0 \uc0ac\uc6a9\uc790\uac00 \uc77c\uad00\ub41c \uc811\uadfc \uad8c\ud55c\uc744 \uac00\uc9c8 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/li>\n<li>\uc5ed\ud560 \u2013 IAM \uc5ed\ud560\uc740 \uc0ac\uc6a9\uc790\uc640 \uc720\uc0ac\ud558\uc9c0\ub9cc \ud2b9\uc815 ID\uc640 \uc5f0\uad00\ub418\uc9c0 \uc54a\uc2b5\ub2c8\ub2e4. EC2 \uc778\uc2a4\ud134\uc2a4 \ubc0f AWS \uc11c\ube44\uc2a4\uc640 \uac19\uc740 \uc5d4\ud130\ud2f0\ub294 \ub9ac\uc18c\uc2a4\uc5d0 \uc561\uc138\uc2a4\ud558\uae30 \uc704\ud55c \uc784\uc2dc \uc790\uaca9 \uc99d\uba85\uc744 \uc81c\uacf5\ud558\ub294 \uc5ed\ud560\uc744 \ud5c8\uc6a9\ud569\ub2c8\ub2e4. \uc5ed\ud560\uc744 \uc0ac\uc6a9\ud558\uba74 \uc778\uc2a4\ud134\uc2a4\ub098 \uc560\ud50c\ub9ac\ucf00\uc774\uc158\uc5d0 \uc601\uad6c \uc790\uaca9 \uc99d\uba85\uc744 \uc800\uc7a5\ud560 \ud544\uc694\uac00 \uc5c6\uc73c\ubbc0\ub85c \ubcf4\uc548\uc774 \uac15\ud654\ub420 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/li>\n<li>\uc815\ucc45 \u2013 IAM \uaddc\uce59\uc740 \uad8c\ud55c\uc744 \uc9c0\uc815\ud558\uace0 \uac1c\uc778, \uadf8\ub8f9 \ub610\ub294 \uc5ed\ud560\uc774 \ud2b9\uc815 \ub9ac\uc18c\uc2a4\uc5d0\uc11c \uc218\ud589\ud560 \uc218 \uc788\ub294 \ud65c\ub3d9\uc744 \uc9c0\uc815\ud569\ub2c8\ub2e4. JSON \ud615\uc2dd\uc758 \uc815\ucc45\uc740 \uac1c\uc778, \uadf8\ub8f9, \uc5ed\ud560 \ub610\ub294 \ub9ac\uc18c\uc2a4\uc5d0 \uc9c1\uc811 \uc801\uc6a9\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/li>\n<\/ol>\n<p><img fetchpriority=\"high\" decoding=\"async\" class=\"wp-image-1168 aligncenter\" src=\"http:\/\/aws-oncloudai.com\/wp-content\/uploads\/2024\/11\/334c3f0d-713e-4f84-a258-0416978ff0f6-300x157.avif\" alt=\"\" width=\"573\" height=\"300\" srcset=\"https:\/\/aws-oncloudai.com\/wp-content\/uploads\/2024\/11\/334c3f0d-713e-4f84-a258-0416978ff0f6-300x157.avif 300w, https:\/\/aws-oncloudai.com\/wp-content\/uploads\/2024\/11\/334c3f0d-713e-4f84-a258-0416978ff0f6-1024x536.avif 1024w, https:\/\/aws-oncloudai.com\/wp-content\/uploads\/2024\/11\/334c3f0d-713e-4f84-a258-0416978ff0f6-768x402.avif 768w, https:\/\/aws-oncloudai.com\/wp-content\/uploads\/2024\/11\/334c3f0d-713e-4f84-a258-0416978ff0f6.avif 1524w\" sizes=\"(max-width: 573px) 100vw, 573px\" \/><\/p>\n<h3 id=\"heading-best-practices-for-aws-iam\" class=\"permalink-heading\">AWS IAM \ubaa8\ubc94 \uc0ac\ub840<\/h3>\n<ul>\n<li>\ucd5c\uc18c \uad8c\ud55c \uac1c\ub150 \uc801\uc6a9 - \uc0ac\uc6a9\uc790\uc640 \uc11c\ube44\uc2a4\uc5d0 \ud560\ub2f9\ub41c \uc791\uc5c5\uc744 \uc644\ub8cc\ud558\ub294 \ub370 \ud544\uc694\ud55c \uc561\uc138\uc2a4 \uad8c\ud55c\ub9cc \uc81c\uacf5\ud569\ub2c8\ub2e4. \ud5c8\uac00\ub418\uc9c0 \uc54a\uc740 \uc811\uadfc \uac00\ub2a5\uc131\uc744 \uc904\uc774\ub824\uba74 \uad8c\ud55c\uc744 \uc790\uc8fc \uac80\ud1a0\ud558\uace0 \uc5c5\ub370\uc774\ud2b8\ud574\uc57c \ud569\ub2c8\ub2e4.<\/li>\n<li>MFA(\ub2e4\uc911 \uc778\uc99d) - MFA\ub97c \uc0ac\uc6a9\ud558\uc5ec \ubcf4\ud638 \uacc4\uce35\uc744 \ucd94\uac00\ud558\uc138\uc694. \ubaa8\ub4e0 IAM \uc0ac\uc6a9\uc790\uc5d0 \ub300\ud574 MFA\ub97c \ud65c\uc131\ud654\ud569\ub2c8\ub2e4. MFA\ub97c \uc0ac\uc6a9\ud558\ub824\uba74 \uc0ac\uc6a9\uc790\uc5d0\uac8c \ud45c\uc900 \ube44\ubc00\ubc88\ud638 \uc678\uc5d0 \ud558\ub4dc\uc6e8\uc5b4 \ud1a0\ud070\uc774\ub098 TOTP(\uc2dc\uac04 \uae30\ubc18 \uc77c\ud68c\uc6a9 \ube44\ubc00\ubc88\ud638)\uc640 \uac19\uc740 \ucd94\uac00 \uc778\uc99d \uc694\uc18c\ub97c \uc81c\uacf5\ud558\ub3c4\ub85d \uc694\uad6c\ud569\ub2c8\ub2e4.<\/li>\n<li>\uc815\uae30\uc801\uc73c\ub85c \uc561\uc138\uc2a4 \ud0a4\ub97c \uad50\uccb4\ud558\uc138\uc694 - \uc561\uc138\uc2a4 \ud0a4\ub97c \uc815\uae30\uc801\uc73c\ub85c \uad50\uccb4\ud558\uc138\uc694. \uc561\uc138\uc2a4 \ud0a4\ub294 AWS\uc640 \ud504\ub85c\uadf8\ub798\ubc0d \ubc29\uc2dd\uc73c\ub85c \ud1b5\uc2e0\ud558\ub294 \ub370 \uc0ac\uc6a9\ub418\uba70 \uc561\uc138\uc2a4 \ud0a4 ID\uc640 \ube44\ubc00 \uc561\uc138\uc2a4 \ud0a4\ub85c \uad6c\uc131\ub429\ub2c8\ub2e4. \uc7a0\uc7ac\uc801\uc778 \ud0a4 \uc190\uc0c1\uc758 \uc601\ud5a5\uc744 \uc644\ud654\ud558\ub824\uba74 \uc774\ub7ec\ud55c \ud0a4\ub97c \uc815\uae30\uc801\uc73c\ub85c \uad50\uccb4\ud558\uc138\uc694.<\/li>\n<li>EC2 \uc778\uc2a4\ud134\uc2a4\uc5d0 IAM \uc5ed\ud560 \uc0ac\uc6a9 \u2013 \uc561\uc138\uc2a4 \ud0a4 \ub300\uc2e0 EC2 \uc778\uc2a4\ud134\uc2a4\uc5d0 IAM \uc5ed\ud560\uc744 \ud560\ub2f9\ud569\ub2c8\ub2e4. \uc774 \uc811\uadfc \ubc29\uc2dd\uc744 \uc0ac\uc6a9\ud558\uba74 \uc778\uc2a4\ud134\uc2a4\ubcc4 \uc561\uc138\uc2a4 \ud0a4\ub97c \uad00\ub9ac\ud558\uace0 \ubcf4\ud638\ud560 \ud544\uc694\uac00 \uc5c6\uc2b5\ub2c8\ub2e4.<\/li>\n<li>AWS CloudTrail \ud65c\uc131\ud654 \u2013 AWS CloudTrail\uc740 AWS \uacc4\uc815\uc758 API \ud65c\ub3d9\uc5d0 \ub300\ud55c \uc804\uccb4 \ub85c\uadf8\ub97c \uc81c\uacf5\ud558\ubbc0\ub85c \ud65c\uc131\ud654\ud574\uc57c \ud569\ub2c8\ub2e4. CloudTrail\uc744 \uc0ac\uc6a9\ud558\uba74 \uc0ac\uc6a9\uc790 \ud589\ub3d9\uc744 \ubaa8\ub2c8\ud130\ub9c1\ud558\uace0 \ucd94\uc801\ud558\uc5ec \uac10\uc0ac, \uaddc\uc815 \uc900\uc218 \ubc0f \ubcf4\uc548 \uc870\uc0ac\ub97c \uc9c0\uc6d0\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/li>\n<\/ul>\n<h3 id=\"heading-conclusion\" class=\"permalink-heading\">\uacb0\ub860\uc801\uc73c\ub85c<\/h3>\n<p>AWS IAM\uc740 \ud074\ub77c\uc6b0\ub4dc \uc778\ud504\ub77c\ub97c \ubcf4\ud638\ud558\ub294 \ub370 \uc911\uc694\ud55c \uc138\ubd84\ud654\ub41c \uc561\uc138\uc2a4 \uc81c\uc5b4 \ubc0f \uad00\ub9ac \uae30\ub2a5\uc744 \uc81c\uacf5\ud569\ub2c8\ub2e4. \uc774 \ube14\ub85c\uadf8 \uac8c\uc2dc\ubb3c\uc5d0\uc11c \uad8c\uc7a5\ud558\ub294 \ubaa8\ubc94 \uc0ac\ub840\ub97c \ub530\ub974\uba74 AWS \ub9ac\uc18c\uc2a4\ub97c \ubb34\ub2e8 \uc561\uc138\uc2a4\uc640 \uc7a0\uc7ac\uc801\uc778 \ubcf4\uc548 \uc704\ud5d8\uc73c\ub85c\ubd80\ud130 \ubcf4\ud638\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \uc548\uc815\uc801\uc774\uace0 \ubcf4\uc548\uc774 \uac15\ud654\ub41c \ud074\ub77c\uc6b0\ub4dc \ud658\uacbd\uc744 \uc720\uc9c0\ud558\uace0 \ud68c\uc0ac\uc758 \ub370\uc774\ud130\uc640 \ub9ac\uc18c\uc2a4\ub97c \ubcf4\ud638\ud558\ub824\uba74 IAM\uc744 \uc62c\ubc14\ub974\uac8c \uad6c\ud604\ud574\uc57c \ud569\ub2c8\ub2e4.<\/p>\n<p>IAM\uc740 \ubcf4\uc548 \ud37c\uc990\uc758 \ud55c \uc870\uac01\uc77c \ubfd0\uc774\ubbc0\ub85c \ub124\ud2b8\uc6cc\ud06c \ubcf4\uc548, \uc554\ud638\ud654, \ube48\ubc88\ud55c \ubcf4\uc548 \ud3c9\uac00\uc640 \uac19\uc740 \ub2e4\ub978 \ubcf4\uc548 \uc870\uce58\ub3c4 \ucd94\uac00\ub85c \uc0ac\uc6a9\ud574\uc57c \ud569\ub2c8\ub2e4. \ub04a\uc784\uc5c6\uc774 \ubcc0\ud654\ud558\ub294 \uc704\ud611 \ud658\uacbd\uc5d0\uc11c AWS \ub9ac\uc18c\uc2a4\ub97c \ubcf4\ud638\ud558\ub824\uba74 \uacbd\uacc4\ub97c \ub2a6\ucd94\uc9c0 \ub9d0\uace0, \ubcf4\uc548 \ubaa8\ubc94 \uc0ac\ub840\uc5d0 \ub300\ud55c \ucd5c\uc2e0 \uc815\ubcf4\ub97c \uc5bb\uace0, \ubcf4\uc548 \uc811\uadfc \ubc29\uc2dd\uc744 \uc9c0\uc18d\uc801\uc73c\ub85c \ubc1c\uc804\uc2dc\ucf1c\uc57c \ud569\ub2c8\ub2e4.<\/p>\n<p><b>\uc628\ud074\ub77c\uc6b0\ub4dc AI<\/b>AWS \uc5d0\uc774\uc804\ud2b8\ub85c\uc11c \uc6b0\ub9ac\ub294 Amazon \ud074\ub77c\uc6b0\ub4dc \uc11c\ube44\uc2a4\ub97c \uc81c\uacf5\ud558\uace0, Amazon \ud074\ub77c\uc6b0\ub4dc \uc11c\ubc84\uc5d0 \ub300\ud55c AWS \uacb0\uc81c\ub97c \uc9c0\uc6d0\ud558\uace0, AWS \ub9c8\uc774\uadf8\ub808\uc774\uc158, AWS \uc6b4\uc601 \ubc0f \uc720\uc9c0 \uad00\ub9ac \ud638\uc2a4\ud305\uacfc \uae30\ud0c0 \uc11c\ube44\uc2a4\ub97c \uc81c\uacf5\ud569\ub2c8\ub2e4. \uad00\ub828\ub41c \uc0ac\ud56d\uc774 \uc788\uc73c\uc2dc\uba74 \uc800\ud76c\uc5d0\uac8c \uc5f0\ub77d\ud574 \uc8fc\uc2dc\uae30 \ubc14\ub78d\ub2c8\ub2e4.<strong>\uc628\ud074\ub77c\uc6b0\ub4dc AI<\/strong>.<\/p>","protected":false},"excerpt":{"rendered":"<p>\ud604\ub300 \ub514\uc9c0\ud138 \ud658\uacbd\uc5d0\uc11c\ub294 \uc778\ud504\ub77c \ubcf4\uc548\uc774 \ub9e4\uc6b0 \uc911\uc694\ud558\uba70, \ud074\ub77c\uc6b0\ub4dc \ucef4\ud4e8\ud305\uc740 \ub9ce\uc740 \uae30\uc5c5\uc758 \uae30\ubc18\uc774 \ub418\uc5c8\uc2b5\ub2c8\ub2e4. Amazon Web Services(AWS)\ub294 AWS \ub9ac\uc18c\uc2a4\uc5d0 \ub300\ud55c \uc0ac\uc6a9\uc790 \uc561\uc138\uc2a4\ub97c \uad00\ub9ac\ud558\ub294 \ub370 \ub3c4\uc6c0\uc774 \ub418\ub294 \uac15\ub825\ud55c ID \ubc0f \uc561\uc138\uc2a4 \uad00\ub9ac(IAM) \ub3c4\uad6c\ub97c \uc81c\uacf5\ud569\ub2c8\ub2e4.<\/p>","protected":false},"author":1,"featured_media":1169,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[65],"tags":[],"class_list":["post-1167","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technical-sharing"],"_links":{"self":[{"href":"https:\/\/aws-oncloudai.com\/ko\/wp-json\/wp\/v2\/posts\/1167","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/aws-oncloudai.com\/ko\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/aws-oncloudai.com\/ko\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/aws-oncloudai.com\/ko\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/aws-oncloudai.com\/ko\/wp-json\/wp\/v2\/comments?post=1167"}],"version-history":[{"count":0,"href":"https:\/\/aws-oncloudai.com\/ko\/wp-json\/wp\/v2\/posts\/1167\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/aws-oncloudai.com\/ko\/wp-json\/wp\/v2\/media\/1169"}],"wp:attachment":[{"href":"https:\/\/aws-oncloudai.com\/ko\/wp-json\/wp\/v2\/media?parent=1167"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/aws-oncloudai.com\/ko\/wp-json\/wp\/v2\/categories?post=1167"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/aws-oncloudai.com\/ko\/wp-json\/wp\/v2\/tags?post=1167"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}