Transition to IMDSv2 on EC2 - Introduction, Preparation, Pitfalls
IMDSv2 can improve EC2 security. For a couple of weeks, AWS Foundational Security Best Practices recommends that EC2 instances use IMDSv2 (control EC2.8).
This video explains why IMDSv2 is useful and what attacks it protects you against, including a live demo. I also highlight a pitfall with Docker containers in a demo. Last but not least, I show you the preparation steps for a smooth transition.
Michael Wittig
I’ve been building on AWS since 2012 together with my brother Andreas. We are sharing our insights into all things AWS on cloudonaut and have written the book AWS in Action. Besides that, we’re currently working on bucketAV, HyperEnv for GitHub Actions, and marbot.
Here are the contact options for feedback and questions.