{"id":1382,"date":"2024-12-02T16:30:06","date_gmt":"2024-12-02T08:30:06","guid":{"rendered":"https:\/\/aws-oncloudai.com\/?p=1382"},"modified":"2024-12-12T11:31:33","modified_gmt":"2024-12-12T03:31:33","slug":"protect-aws-10-best-practices-for-your-environment","status":"publish","type":"post","link":"https:\/\/aws-oncloudai.com\/ko\/\uc0ac\uc6a9\uc790-\ud658\uacbd\uc744-\uc704\ud55c-aws-10\uac00\uc9c0-\ubaa8\ubc94-\uc0ac\ub840-\ubcf4\ud638\/","title":{"rendered":"AWS \ud658\uacbd \ubcf4\uc548\uc744 \uc704\ud55c 10\uac00\uc9c0 \ubaa8\ubc94 \uc0ac\ub840"},"content":{"rendered":"<p>\ud074\ub77c\uc6b0\ub4dc \ucef4\ud4e8\ud305 \uae30\uc220\uc774 \uc9c0\uc18d\uc801\uc73c\ub85c \uac1c\ubc1c\ub418\uace0 \ub110\ub9ac \uc801\uc6a9\ub428\uc5d0 \ub530\ub77c \uc810\uc810 \ub354 \ub9ce\uc740 \uae30\uc5c5\uacfc \uac1c\ubc1c\uc790\uac00 \uc791\uc5c5 \ubd80\ud558\ub97c \ud074\ub77c\uc6b0\ub4dc \ud50c\ub7ab\ud3fc\uc73c\ub85c \uc774\uc804\ud558\uae30\ub85c \uc120\ud0dd\ud558\uace0 \uc788\uc73c\uba70 AWS(Amazon Web Services)\ub294 \uac00\uc7a5 \uc778\uae30 \uc788\ub294 \ud074\ub77c\uc6b0\ub4dc \uc11c\ube44\uc2a4 \uc81c\uacf5\uc5c5\uccb4 \uc911 \ud558\ub098\uac00 \ub418\uc5c8\uc2b5\ub2c8\ub2e4. \ud558\uc9c0\ub9cc \ud074\ub77c\uc6b0\ub4dc \ud658\uacbd\uc5d0\uc11c\ub3c4 \ubcf4\uc548 \ubb38\uc81c\uac00 \ubc1c\uc0dd\ud558\ub294\ub370, \ud2b9\ud788 \uacc4\uc815\uacfc \ub9ac\uc18c\uc2a4\ub97c \ubcf4\ud638\ud558\ub294 \uac83\uc774 \ud074\ub77c\uc6b0\ub4dc \ud658\uacbd\uc758 \uc548\uc815\uc801\uc778 \uc6b4\uc601\uc744 \ubcf4\uc7a5\ud558\ub294 \ud575\uc2ec\uc774 \ub418\uc5c8\uc2b5\ub2c8\ub2e4. AWS\ub294 \uc0ac\uc6a9\uc790\uac00 \ud074\ub77c\uc6b0\ub4dc\uc5d0\uc11c \ub370\uc774\ud130\ub97c \uc548\uc804\ud558\uac8c \ubcf4\ud638\ud560 \uc218 \uc788\ub3c4\ub85d \ub2e4\uc591\ud558\uace0 \uac15\ub825\ud55c \ubcf4\uc548 \ub3c4\uad6c\uc640 \ubaa8\ubc94 \uc0ac\ub840\ub97c \uc81c\uacf5\ud569\ub2c8\ub2e4. \uc774 \ubb38\uc11c\uc5d0\uc11c\ub294 AWS \ub9ac\uc18c\uc2a4\uc758 \ubcf4\uc548\uc744 \uac15\ud654\ud558\uace0 \ud074\ub77c\uc6b0\ub4dc \ud658\uacbd\uc774 \uc7a0\uc7ac\uc801 \uc704\ud611\uc73c\ub85c\ubd80\ud130 \ubcf4\ud638\ub418\ub3c4\ub85d \ub3d5\ub294 10\uac00\uc9c0 AWS \ubcf4\uc548 \ubaa8\ubc94 \uc0ac\ub840\ub97c \uc18c\uac1c\ud569\ub2c8\ub2e4.<\/p>\n<h3 id=\"heading-create-strong-secure-password\" class=\"permalink-heading\">1. \uac15\ub825\ud558\uace0 \uc548\uc804\ud55c \ube44\ubc00\ubc88\ud638\ub97c \ub9cc\ub4dc\uc138\uc694<\/h3>\n<p>\ud56d\uc0c1 \uc0ac\uc6a9\ud558\uc138\uc694<strong>\ubb34\uc791\uc704\ub85c \uc0dd\uc131\ub41c \uac15\ub825\ud55c<\/strong>\ube44\ubc00\ubc88\ud638, \ube44\ubc00\ubc88\ud638\uc5d0\ub294 \ucd5c\uc18c\ud55c \ub2e4\uc74c\uc774 \ud3ec\ud568\ub418\uc5b4\uc57c \ud569\ub2c8\ub2e4.<strong>24~30\uc790\uc758 \ubb38\uc790, \uae30\ud638, \ub300\ubb38\uc790, \uc22b\uc790.<\/strong><\/p>\n<h3 id=\"heading-multi-factor-authentication-everywhere\" class=\"permalink-heading\">2. \uc5b4\ub514\uc11c\ub098 \ub2e4\uc911 \uc778\uc99d<\/h3>\n<p>AWS\uc5d0\uc11c\ub294 \ub8e8\ud2b8 \uacc4\uc815\uc744 \ud5c8\uc6a9\ud569\ub2c8\ub2e4(<strong>\uc5c6\uc5b4\uc11c\ub294 \uc548\ub420<\/strong>) \ubc0f \uae30\ud0c0 \uacc4\uc815. \uacc4\uc815\uc774 \ud574\ud0b9\ub2f9\ud558\ub294 \uac83\uc744 \uc6d0\uce58 \uc54a\uc73c\uc2dc\ub2e4\uba74 \uac00\ub2a5\ud55c \ud55c \uc77c\uad00\ub418\uac8c MFA\ub97c \uc2dc\ud589\ud558\uc138\uc694.<\/p>\n<h3 id=\"heading-remove-credentials-from-your-root-account\" class=\"permalink-heading\">3. \ub8e8\ud2b8 \uacc4\uc815\uc5d0\uc11c \uc790\uaca9 \uc99d\uba85 \uc81c\uac70<\/h3>\n<p>\ub8e8\ud2b8 \uacc4\uc815\uc740 AWS\uc5d0 \uac00\uc785\ud558\ub294 \ub370\uc5d0\ub9cc \uc0ac\uc6a9\ud574\uc57c \ud558\uba70 \ud658\uacbd\uc758 \ubaa8\ub4e0 \ud56d\ubaa9\uc5d0 \uc561\uc138\uc2a4\ud560 \uc218 \uc788\uc73c\ubbc0\ub85c \ub2e4\ub978 \uc6a9\ub3c4\ub85c \uc0ac\uc6a9\ud558\uba74 \uc548 \ub429\ub2c8\ub2e4. \uccab \ubc88\uc9f8 \ub2e8\uacc4<strong>\uc608<\/strong><strong>~\uc5d0\uc11c<\/strong>\ud504\ub85c\uadf8\ub798\ubc0d \ubc29\uc2dd \uc561\uc138\uc2a4 \uad8c\ud55c\uc744 \uc81c\uac70\ud569\ub2c8\ub2e4.<\/p>\n<p>IAM \uc0ac\uc6a9\uc790\ub97c \uc0dd\uc131\ud558\uace0 \ud574\ub2f9 \uc0ac\uc6a9\uc790\uc5d0\uac8c \ud638\ucd9c\ud558\ub824\ub294 API\uc5d0 \ud544\uc694\ud55c \uad8c\ud55c\ub9cc \ubd80\uc5ec\ud569\ub2c8\ub2e4.<\/p>\n<h3 id=\"heading-enable-cloudtrail-logging-store-trails-into-separated-account\" class=\"permalink-heading\">4. CloudTrail \ub85c\uae45\uc744 \ud65c\uc131\ud654\ud558\uc5ec \ucd94\uc801\uc744 \ubcc4\ub3c4 \uacc4\uc815\uc5d0 \uc800\uc7a5\ud569\ub2c8\ub2e4.<\/h3>\n<p>CloudTrail\uc744 \uc0ac\uc6a9\ud558\uba74 AWS \ud658\uacbd\uc5d0\uc11c \ubc1c\uc0dd\ud558\ub294 \ubaa8\ub4e0 \uc77c\uc744 \uae30\ub85d\ud558\uc5ec \ubcf4\uc548 \uce68\ud574\ub97c \ud0d0\uc9c0\ud558\uace0 \uc870\uc0ac\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<p>\ub2e4\uc74c<strong>\ubaa8\ubc94 \uc0ac\ub840\ub294 \uc77c\ubc18\uc801\uc778 \uc9c0\uce68\uc785\ub2c8\ub2e4.<\/strong>: \ud544\uc694\uc5d0 \ub530\ub77c \uc870\uc815\ud558\uc138\uc694.<\/p>\n<ul>\n<li><strong>\ubaa8\ub4e0 AWS \uc9c0\uc5ed\uc5d0 \ud2b8\ub808\uc77c\uc744 \uc801\uc6a9\ud558\ub824\uba74:<\/strong>AWS \uacc4\uc815\uc5d0\uc11c \ubc1c\uc0dd\ud558\ub294 \ubaa8\ub4e0 \uc774\ubca4\ud2b8\ub97c \uae30\ub85d\ud558\uc138\uc694.<\/li>\n<li><strong>CloudTrail \ub85c\uadf8 \ud30c\uc77c \ubb34\uacb0\uc131 \ud65c\uc131\ud654:<\/strong>\ub85c\uadf8 \ud30c\uc77c\uc774 \uc0ad\uc81c\ub418\uac70\ub098 \ubcc0\uacbd\ub418\uc5c8\ub294\uc9c0 \uc54c\ub824\uc90d\ub2c8\ub2e4.<\/li>\n<li><strong>\ud56d\uc0c1 \ubcc4\ub3c4\uc758 \uacc4\uc815\uc5d0 \ub85c\uadf8\ub97c \uc800\uc7a5\ud558\uc138\uc694<\/strong>: \uc5c4\uaca9\ud55c \ubcf4\uc548 \ud1b5\uc81c, \uc811\uadfc \ubc0f \uc5c5\ubb34 \ubd84\ub9ac\ub97c \uad6c\ud604\ud569\ub2c8\ub2e4.<\/li>\n<li><strong>\ud45c\uc900 S3-SSE \ub300\uc2e0 AWS KMS\ub97c \uc0ac\uc6a9\ud558\uc5ec \ud0a4\ub97c \uad00\ub9ac\ud558\uc138\uc694.<\/strong>\uac04\ub2e8\ud558\uace0 \uad00\ub9ac\ud558\uae30 \uc26c\uc6b4 \ubcf4\uc548 \uacc4\uce35\uc744 \uc81c\uacf5\ud569\ub2c8\ub2e4.<\/li>\n<\/ul>\n<h3 id=\"heading-operate-with-iam-users-groups-and-roles\" class=\"permalink-heading\">5. IAM \uc0ac\uc6a9\uc790, \uadf8\ub8f9 \ubc0f \uc5ed\ud560\uc744 \uc0ac\uc6a9\ud558\uc5ec \uc791\ub3d9<\/h3>\n<p><strong>\uc77c\uc0c1 \uc5c5\ubb34\uc5d0\uc11c\ub294 \ub8e8\ud2b8 \uc0ac\uc6a9\uc790\ub97c \uc0ac\uc6a9\ud558\uc9c0 \ub9c8\uc138\uc694.<\/strong>\ub300\uc2e0 AWS\ub97c \uc778\uc6a9\ud558\uc138\uc694. \uccab \ubc88\uc9f8 IAM \uc0ac\uc6a9\uc790\ub97c \uc0dd\uc131\ud560 \ub54c \ub8e8\ud2b8 \uc0ac\uc6a9\uc790\ub9cc \uc0ac\uc6a9\ud558\ub294 \ubaa8\ubc94 \uc0ac\ub840\ub97c \uace0\uc218\ud558\uc138\uc694. \uadf8\ub7ec\uba74 \uc811\uadfc \ubc0f \ube44\ubc00 \uc790\uaca9 \uc99d\uba85\uc744 \uc548\uc804\ud558\uac8c \uc800\uc7a5\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \ud2b9\uc815\ud55c \uc791\uc5c5\uc5d0 \ud544\uc694\ud558\uc9c0 \uc54a\ub294 \ud55c.<\/p>\n<p><strong>IAM \uc0ac\uc6a9\uc790<\/strong>AWS \ub9ac\uc18c\uc2a4\uc5d0 \ub300\ud55c \uc791\uc5c5\uc744 \uc218\ud589\ud560 \uc218 \uc788\ub294 IAM ID\ub97c \ub098\ud0c0\ub0c5\ub2c8\ub2e4.<strong>\uc0ac\uc6a9\uc790 \uadf8\ub8f9<\/strong>IAM \uc0ac\uc6a9\uc790\uc758 \uceec\ub809\uc158\uc744 \ud558\ub098\uc758 \ub2e8\uc704\ub85c \ucc98\ub9ac\ud569\ub2c8\ub2e4. \ub9c8\uc9c0\ub9c9\uc73c\ub85c \uc5ed\ud560\uc740 \ub9ac\uc18c\uc2a4\uc5d0 \uc9c1\uc811 \uc5f0\uacb0\ub418\uba70 \ub2e4\ub978 \ub9ac\uc18c\uc2a4\uc5d0 \ub300\ud55c \uc791\uc5c5\uc744 \uc218\ud589\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<h3 id=\"heading-apply-the-least-privilege-principle-on-iam-policies\" class=\"permalink-heading\">6. IAM \uc815\ucc45\uc5d0 \ucd5c\uc18c \uad8c\ud55c \uc6d0\uce59 \uc801\uc6a9<\/h3>\n<p>\ubaa8\ub4e0 \ud56d\ubaa9\uc5d0 \uc561\uc138\uc2a4\ud558\ub824\uba74 \uad00\ub9ac\uc790 \uad8c\ud55c\uc744 \uc0ac\uc6a9\ud558\uc9c0 \ub9c8\uc2ed\uc2dc\uc624.<strong>\ubaa8\ub4e0 \uad8c\ud55c \uac70\ubd80<\/strong>\uc791\uc5c5\uc744 \uc644\ub8cc\ud558\ub294 \ub370 \ud544\uc694\ud55c \ud2b9\uc815 \uc11c\ube44\uc2a4\uc5d0 \ub300\ud55c \uad8c\ud55c\ubd80\ud130 \uc2dc\uc791\ud55c \ub2e4\uc74c, \uc791\uc5c5\uc744 \uc644\ub8cc\ud558\ub294 \ub370 \ud544\uc694\ud55c \ud2b9\uc815 \uc11c\ube44\uc2a4\uc5d0 \ub300\ud55c \uad8c\ud55c\uc744 \ucc9c\ucc9c\ud788 \ucd94\uac00\ud569\ub2c8\ub2e4. \uc774\ub807\uac8c \ud558\uba74 \ucd5c\uc18c \uad8c\ud55c\uc758 \uc6d0\uce59\uc744 \uc900\uc218\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<h3 id=\"heading-use-aws-organizations-to-set-up-your-project-accounts\" class=\"permalink-heading\">7. AWS Organizations\uc5d0\uc11c \ud504\ub85c\uc81d\ud2b8 \uacc4\uc815 \uc124\uc815<\/h3>\n<p>AWS Organizations\ub294 \uc5ec\ub7ec \uacc4\uc815\uc744 \uc911\uc559\uc5d0\uc11c \uad00\ub9ac\ud560 \uc218 \uc788\ub294 \uacc4\uc815 \uad00\ub9ac \uc11c\ube44\uc2a4\uc785\ub2c8\ub2e4. \uc870\uc9c1 \uad6c\uc870\ub97c \uc815\uc758\ud558\uba74 \uc870\uc9c1 \ub2e8\uc704\ubcc4\ub85c \uacc4\uc815 \uc0ac\uc6a9\uc744 \ub354 \uc798 \ubd84\ub958\ud558\uace0 \uc815\uc758\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<p>\ub610\ud55c AWS Organizations\uc5d0\ub294 \ud1b5\ud569 \uccad\uad6c \uae30\ub2a5\uc774 \ud3ec\ud568\ub418\uc5b4 \uc788\uc5b4 \uc804\uccb4 \uc694\uae08 \ub0b4\uc5ed\uc744 \ud655\uc778\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \uc774\ub97c \ud1b5\ud574 \uc774\uc0c1 \ud604\uc0c1\uc744 \ub354 \ube68\ub9ac \ubc1c\uacac\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<p>\uc870\uc9c1\uc5d0\uc11c AWS Single Sign-On\uc774 \ud65c\uc131\ud654\ub41c \uacbd\uc6b0 Leapp\uc744 \ud1b5\ud574 \uc801\uaca9 \uc5ed\ud560\uc5d0 \ud504\ub85c\uadf8\ub798\ubc0d \ubc29\uc2dd\uc73c\ub85c \uc561\uc138\uc2a4\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<p>AWS \uc870\uc9c1\uc740 \ubcf4\uc548 \ubaa9\uc801\uc73c\ub85c \uc0ac\uc6a9\ud569\ub2c8\ub2e4<strong>\uc11c\ube44\uc2a4 \uc81c\uc5b4 \uc815\ucc45<\/strong>\ubaa8\ub4e0 \uacc4\uc815\uc758 IAM \uc815\ucc45\uc744 \uae30\ubc18\uc73c\ub85c \uc791\ub3d9\ud558\uc5ec \uc0ac\uc6a9 \uac00\ub2a5\ud55c \ucd5c\ub300 \uad8c\ud55c\uc744 \uc81c\ud55c\ud569\ub2c8\ub2e4. \uc870\uc9c1 \ub2e8\uc704\uc5d0 \uc801\uc6a9\ud558\uba74 \ud68c\uc0ac\uc758 \ub2e4\uc591\ud55c \ubd80\uc11c\uc5d0 \ub300\ud55c \uad8c\ud55c\uc758 \uacbd\uacc4\ub97c \uc815\uc758\ud558\ub294 \ub370 \ub3c4\uc6c0\uc774 \ub429\ub2c8\ub2e4.<\/p>\n<h3 id=\"heading-enable-aws-config-rules-and-billing-alarms\" class=\"permalink-heading\">8. AWS Config \uaddc\uce59 \ubc0f \uccad\uad6c \uc54c\ub9bc \ud65c\uc131\ud654<\/h3>\n<p>AWS\uc5d0\ub294<strong>AWS \ub9ac\uc18c\uc2a4\uac00 \ubcc0\uc870\ub418\uac70\ub098 \uc624\uc6a9\ub418\uc9c0 \uc54a\uc558\ub294\uc9c0 \ud655\uc778\ud558\uc138\uc694.<\/strong>\ub3c4\uad6c.<\/p>\n<p>AWS Config\ub294 \uacc4\uc815\uc758 AWS \ub9ac\uc18c\uc2a4 \uad6c\uc131\uc5d0 \ub300\ud55c \uc790\uc138\ud55c \ubcf4\uae30\ub97c \uc81c\uacf5\ud569\ub2c8\ub2e4. \uc5ec\uae30\uc5d0\ub294 \uc11c\ub85c \uc5b4\ub5bb\uac8c \uad00\ub828\ub418\uc5b4 \uc788\ub294\uc9c0, \uacfc\uac70\uc5d0 \uc5b4\ub5bb\uac8c \uad6c\uc131\ub418\uc5c8\ub294\uc9c0\uac00 \ud3ec\ud568\ub429\ub2c8\ub2e4. AWS Config\ub97c \uc0ac\uc6a9\ud558\uba74 \uc2dc\uac04\uc774 \uc9c0\ub0a8\uc5d0 \ub530\ub77c \uc5b4\ub5bb\uac8c \ubcc0\uacbd\ub418\ub294\uc9c0 \ud30c\uc545\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<p><strong>\uccad\uad6c \uc54c\ub9bc \ubc0f \uccad\uad6c \uc784\uacc4\uac12<\/strong>\uacc4\uc815\uc5d0 \ubb38\uc81c\uac00 \uc788\uc744 \uacbd\uc6b0 \uc54c\ub9bc\uc744 \ubc1b\ub294 \ub610 \ub2e4\ub978 \uc88b\uc740 \ubc29\ubc95\uc785\ub2c8\ub2e4.<\/p>\n<h3 id=\"heading-apply-security-at-all-layers\" class=\"permalink-heading\">9. \ubaa8\ub4e0 \uacc4\uce35\uc5d0 \ubcf4\uc548\uc744 \uc801\uc6a9\ud558\uc138\uc694<\/h3>\n<p>AWS\ub97c \uc0ac\uc6a9\ud558\uc5ec \ud504\ub85c\uc81d\ud2b8\ub97c \ube4c\ub4dc\ud560 \ub54c\ub294 \ud56d\uc0c1 \uc560\ud50c\ub9ac\ucf00\uc774\uc158\uacfc \ud658\uacbd\uc758 \ubaa8\ub4e0 \uacc4\uce35\uc744 \ubcf4\ud638\ud558\uae30 \uc704\ud574 \ub178\ub825\ud558\uc138\uc694.<\/p>\n<ul>\n<li>\ud504\ub85c\ud1a0\ucf5c\ub85c HTTPS\ub97c \uc0ac\uc6a9\ud558\uc138\uc694. API Gateway, CloudFront, LoadBalancers \ub610\ub294 \uc77c\ubc18 EC2 \uc778\uc2a4\ud134\uc2a4\uc640 \uac19\uc740 \uc11c\ube44\uc2a4\ub97c \uc0ac\uc6a9\ud558\uc5ec \uc774 \uc791\uc5c5\uc744 \uc218\ud589\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. B2B \uc560\ud50c\ub9ac\ucf00\uc774\uc158\uc744 \uac1c\ubc1c\ud558\ub294 \uacbd\uc6b0 \uc0c1\ud638 TLS \uc778\uc99d\ub3c4 \uc5fc\ub450\uc5d0 \ub450\uc138\uc694.<\/li>\n<li>\ub9ac\uc18c\uc2a4\uc5d0 \ubcf4\uc548 \uadf8\ub8f9\uc744 \uc801\uc6a9\ud558\uc5ec \ud658\uacbd \ub0b4\ubd80 \ubc0f \uc678\ubd80\uc5d0\uc11c \ud1b5\uc2e0\ud560 \uc218 \uc788\ub294 CIDR, \ud2b9\uc815 IP \uc8fc\uc18c \ubc0f \ud3ec\ud2b8\ub97c \uc2e0\uc911\ud558\uac8c \uad00\ub9ac\ud569\ub2c8\ub2e4.<\/li>\n<li>\uc6b0\uc218\ud55c \ub124\ud2b8\uc6cc\ud06c \uc124\uacc4\ub97c \uc801\uc6a9\ud558\uace0 \uac1c\uc778 VPC\uc5d0\uc11c \uc778\ud130\ub137\uc5d0 \uc9c1\uc811 \uc561\uc138\uc2a4\ud560 \ud544\uc694\uac00 \uc5c6\ub294 \ubaa8\ub4e0 \ub9ac\uc18c\uc2a4\ub97c \uaca9\ub9ac\ud558\uc5ec \ubaa8\ub2c8\ud130\ub9c1\uc774 \uc26c\uc6b4 \ud2b9\uc815 \uac8c\uc774\ud2b8\uc6e8\uc774\ub85c\uc758 \uc720\uc785\uc744 \uc904\uc774\uc138\uc694.<\/li>\n<li><strong>\uac00\ub2a5\ud558\uba74 \ud56d\uc0c1 \uc0ac\uc6a9\ud558\uc138\uc694<\/strong>\uc554\ud638\ud654\ub97c \uc801\uc6a9\ud569\ub2c8\ub2e4. AWS\ub294 S3\uc5d0\uc11c \uc9c1\uc811 \uc554\ud638\ud654\ub97c \uc81c\uacf5\ud558\uace0, \ud0a4 \uad00\ub9ac\ub97c \uc704\ud574 KMS\ub97c \uc0ac\uc6a9\ud558\uba70, EBS \ubcfc\ub968\uc744 \uc9c1\uc811 \uc554\ud638\ud654\ud558\ub294 \uae30\ub2a5\uc744 \uc81c\uacf5\ud569\ub2c8\ub2e4.<\/li>\n<\/ul>\n<h3 id=\"heading-use-temporary-generated-credentials\" class=\"permalink-heading\">10. \uc784\uc2dc\ub85c \uc0dd\uc131\ub41c \uc790\uaca9 \uc99d\uba85 \uc0ac\uc6a9<\/h3>\n<p><strong>\uc790\uaca9 \uc99d\uba85\uacfc .aws \ud3f4\ub354\ub294 \uc545\uc758\uc801\uc778 \uacf5\uaca9\uc758 \uac00\ub2a5\ud55c \ub9e4\uac1c\uccb4\uc785\ub2c8\ub2e4.<\/strong><\/p>\n<p>IAM Simple Token Service\ub97c \ud1b5\ud574 \ubaa8\ub4e0 \uc790\uaca9 \uc99d\uba85\uc744 \ubcf4\ud638\ud558\uace0 \uc784\uc2dc \uc790\uaca9 \uc99d\uba85\uc744 \ub9cc\ub4dc\ub294 \ubc88\uac70\ub85c\uc6c0\uc744 \uc5c6\uc560\ub824\uba74 \ub2e4\uc74c\uc744 \uc0ac\uc6a9\ud558\ub294 \uac83\uc774 \uc88b\uc2b5\ub2c8\ub2e4.<strong>\uc624\ud508\uc18c\uc2a4 \ud504\ub85c\uc81d\ud2b8 Leapp.<\/strong><\/p>\n<p>\ud55c\ub208\uc5d0 \ubcf4\ub294 \uba87 \uac00\uc9c0 \uae30\ub2a5:<\/p>\n<ul>\n<li><strong>\ud55c \ubc88\uc758 \ud074\ub9ad\uc73c\ub85c \ud074\ub77c\uc6b0\ub4dc \uc790\uaca9 \uc99d\uba85\uc744 \uc0dd\uc131\ud558\uc138\uc694<\/strong><\/li>\n<li><strong>\ub370\uc774\ud130\ub294 OS \uc2dc\uc2a4\ud15c \ubcfc\ud2b8\uc5d0 \ub85c\uceec\ub85c \uc554\ud638\ud654\ub418\uc5b4 \uc800\uc7a5\ub429\ub2c8\ub2e4.<\/strong><\/li>\n<li><strong>\ub2e4\uc911 \ud074\ub77c\uc6b0\ub4dc \uc561\uc138\uc2a4 \uc9c0\uc6d0 \uc804\ub7b5<\/strong><\/li>\n<li><strong>\uc790\ub3d9 \ub2e8\uae30 \uc790\uaca9 \uc99d\uba85 \uc21c\ud658<\/strong><\/li>\n<li><strong>AWS Single Sign-on\uc744 \uc0ac\uc6a9\ud558\uc5ec \uc138\uc158\uc744 \uc790\ub3d9\uc73c\ub85c \uad6c\uc131\ud569\ub2c8\ub2e4.<\/strong><\/li>\n<li>\uc0ac\uc6a9\uc790 \uce5c\ud654\uc801\uc774\uace0 \ub9e4\ub044\ub7ec\uc6b4 \uc778\ud130\ud398\uc774\uc2a4 :)<\/li>\n<\/ul>\n<h2 id=\"heading-conclusions\" class=\"permalink-heading\">\uacb0\ub860\uc801\uc73c\ub85c<\/h2>\n<p>\ud074\ub77c\uc6b0\ub4dc \ud658\uacbd\uc5d0\uc11c \ubcf4\uc548\uc740 \ubaa8\ub4e0 \uc0ac\uc6a9\uc790\uac00 \uc8fc\uc758\ub97c \uae30\uc6b8\uc5ec\uc57c \ud558\ub294 \ud575\uc2ec \ubb38\uc81c\uc785\ub2c8\ub2e4. \uc774 \ubb38\uc11c\uc5d0 \uc124\uba85\ub41c 10\uac00\uc9c0 \ubaa8\ubc94 \uc0ac\ub840(\uac15\ub825\ud55c \ube44\ubc00\ubc88\ud638 \uc0dd\uc131, \ub2e4\uc911 \uc694\uc18c \uc778\uc99d \ud65c\uc131\ud654, \ucd5c\uc18c \uad8c\ud55c \uc6d0\uce59 \uc801\uc6a9, \ubcf4\uc548 \ubaa8\ub2c8\ud130\ub9c1 \ubc0f \ub85c\uae45 \ud65c\uc131\ud654)\ub97c \uad6c\ud604\ud558\uba74 \uacc4\uc815\uacfc \ub9ac\uc18c\uc2a4\uac00 \uc190\uc0c1\ub420 \uc704\ud5d8\uc744 \ud06c\uac8c \uc904\uc77c \uc218 \uc788\uc2b5\ub2c8\ub2e4. \ub610\ud55c AWS Organizations \ubc0f \uc784\uc2dc \uc790\uaca9 \uc99d\uba85\uacfc \uac19\uc740 \ub3c4\uad6c\ub97c \uc0ac\uc6a9\ud558\uba74 \ubcf4\uc548\uc744 \ub354\uc6b1 \uac15\ud654\ud558\uace0 \uc2dc\uc2a4\ud15c\uc744 \ud56d\uc0c1 \ud1b5\uc81c\ub418\uace0 \ucd94\uc801 \uac00\ub2a5\ud55c \uc0c1\ud0dc\ub85c \uc720\uc9c0\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. AWS \ud658\uacbd\uc758 \uaddc\ubaa8\uc5d0 \uad00\uacc4\uc5c6\uc774 \uc774\ub7ec\ud55c \ubcf4\uc548 \ubaa8\ubc94 \uc0ac\ub840\ub294 \ud074\ub77c\uc6b0\ub4dc \ub9ac\uc18c\uc2a4\ub97c \uac15\ub825\ud558\uac8c \ubcf4\ud638\ud558\uace0 \uc548\uc2ec\ud558\uace0 \uc791\uc5c5\ud558\ub294 \ub370 \ub3c4\uc6c0\uc774 \ub420 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<p><b>\uc628\ud074\ub77c\uc6b0\ub4dc AI<\/b>AWS \uc5d0\uc774\uc804\ud2b8\ub85c\uc11c \uc6b0\ub9ac\ub294 Amazon \ud074\ub77c\uc6b0\ub4dc \uc11c\ube44\uc2a4\ub97c \uc81c\uacf5\ud558\uace0, Amazon \ud074\ub77c\uc6b0\ub4dc \uc11c\ubc84\uc5d0 \ub300\ud55c AWS \uacb0\uc81c\ub97c \uc9c0\uc6d0\ud558\uace0, AWS \ub9c8\uc774\uadf8\ub808\uc774\uc158, AWS \uc6b4\uc601 \ubc0f \uc720\uc9c0 \uad00\ub9ac \ud638\uc2a4\ud305\uacfc \uae30\ud0c0 \uc11c\ube44\uc2a4\ub97c \uc81c\uacf5\ud569\ub2c8\ub2e4. \uad00\ub828\ub41c \uc0ac\ud56d\uc774 \uc788\uc73c\uc2dc\uba74 \uc800\ud76c\uc5d0\uac8c \uc5f0\ub77d\ud574 \uc8fc\uc2dc\uae30 \ubc14\ub78d\ub2c8\ub2e4.<strong>\uc628\ud074\ub77c\uc6b0\ub4dc AI<\/strong>.<\/p>","protected":false},"excerpt":{"rendered":"<p>\ud074\ub77c\uc6b0\ub4dc \ucef4\ud4e8\ud305 \uae30\uc220\uc774 \uc9c0\uc18d\uc801\uc73c\ub85c \uac1c\ubc1c\ub418\uace0 \ub110\ub9ac \uc801\uc6a9\ub428\uc5d0 \ub530\ub77c \uc810\uc810 \ub354 \ub9ce\uc740 \uae30\uc5c5\uacfc \uac1c\ubc1c\uc790\uac00 \uc6cc\ud06c\ub85c\ub4dc\ub97c \ud074\ub77c\uc6b0\ub4dc \ud50c\ub7ab\ud3fc\uc73c\ub85c \uc774\uc804\ud558\uae30\ub85c \uc120\ud0dd\ud558\uace0 \uc788\uc73c\uba70 AWS(Amazon Web Services)\ub294 \uac00\uc7a5 \uc778\uae30 \uc788\ub294 \ud074\ub77c\uc6b0\ub4dc \uc11c\ube44\uc2a4 \uc81c\uacf5\uc5c5\uccb4 \uc911 \ud558\ub098\uac00 \ub418\uc5c8\uc2b5\ub2c8\ub2e4. \ud558\uc9c0\ub9cc \ud074\ub77c\uc6b0\ub4dc \ud658\uacbd\uc5d0\uc11c\ub3c4 \ubcf4\uc548 \ubb38\uc81c\uac00 \ubc1c\uc0dd\ud558\ub294\ub370, \ud2b9\ud788 \uacc4\uc815\uacfc \ub9ac\uc18c\uc2a4\ub97c \ubcf4\ud638\ud558\ub294 \uac83\uc774 \ud074\ub77c\uc6b0\ub4dc \ud658\uacbd\uc758 \uc548\uc815\uc801\uc778 \uc6b4\uc601\uc744 \ubcf4\uc7a5\ud558\ub294 \ud575\uc2ec\uc774 \ub418\uc5c8\uc2b5\ub2c8\ub2e4. AWS\ub294 \uc0ac\uc6a9\uc790\uac00 \ud074\ub77c\uc6b0\ub4dc\uc5d0\uc11c \ub370\uc774\ud130\ub97c \uc548\uc804\ud558\uac8c \ubcf4\ud638\ud560 \uc218 \uc788\ub3c4\ub85d \ub2e4\uc591\ud558\uace0 \uac15\ub825\ud55c \ubcf4\uc548 \ub3c4\uad6c\uc640 \ubaa8\ubc94 \uc0ac\ub840\ub97c \uc81c\uacf5\ud569\ub2c8\ub2e4.<\/p>","protected":false},"author":1,"featured_media":1384,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[65],"tags":[],"class_list":["post-1382","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technical-sharing"],"_links":{"self":[{"href":"https:\/\/aws-oncloudai.com\/ko\/wp-json\/wp\/v2\/posts\/1382","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/aws-oncloudai.com\/ko\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/aws-oncloudai.com\/ko\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/aws-oncloudai.com\/ko\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/aws-oncloudai.com\/ko\/wp-json\/wp\/v2\/comments?post=1382"}],"version-history":[{"count":0,"href":"https:\/\/aws-oncloudai.com\/ko\/wp-json\/wp\/v2\/posts\/1382\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/aws-oncloudai.com\/ko\/wp-json\/wp\/v2\/media\/1384"}],"wp:attachment":[{"href":"https:\/\/aws-oncloudai.com\/ko\/wp-json\/wp\/v2\/media?parent=1382"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/aws-oncloudai.com\/ko\/wp-json\/wp\/v2\/categories?post=1382"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/aws-oncloudai.com\/ko\/wp-json\/wp\/v2\/tags?post=1382"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}