# SecureCart Journey Securing data is **critical for protecting customer transactions, payment information, and order details** in SecureCart. Task Statement 1.3 focuses on implementing **appropriate data security controls** to ensure **data governance, encryption, access control, and lifecycle management**. βœ” **Why does SecureCart prioritize data security?** * **Protects sensitive customer data** (names, addresses, payment info). * **Ensures compliance with regulations** (PCI DSS, GDPR). * **Prevents data loss and unauthorized access**. * **Maintains data integrity and availability**. *** ### **πŸ”Ή Step 1: Understanding SecureCart’s Data Security Requirements** **Who Needs Access to Data?** | **Role** | **Access Level** | **Data Type** | | -------------------------------- | ------------------ | ------------------------------- | | **Developers** | Read-only access | Logs, application data. | | **Security Team** | Full visibility | Security logs, IAM policies. | | **Database Administrators** | Read/Write | RDS & DynamoDB databases. | | **Application Services** | Controlled access | Order history, product catalog. | | **Third-Party Payment Provider** | Limited API access | Transaction details. | **What Data Needs to Be Protected?** | **Data Type** | **Storage Location** | **Protection Method** | | ----------------------- | ------------------------- | ---------------------------------------- | | **Customer Data (PII)** | Amazon RDS, DynamoDB | Encryption at rest & access control. | | **Order Transactions** | DynamoDB | IAM Role-based access policies. | | **Logs & Audit Data** | Amazon S3 | S3 bucket policies & retention policies. | | **Payment Information** | External Payment Provider | Tokenization & PCI compliance. | βœ… **Best Practices:**\ βœ” Apply **role-based access control (RBAC)** to prevent unauthorized access.\ βœ” Encrypt **all sensitive data at rest and in transit**.\ βœ” Implement **data retention policies** to remove stale data. *** ### **πŸ”Ή Step 2: Implementing Data Encryption at Rest & In Transit** #### **A. Encrypting Data at Rest** βœ” **Why?** – Prevents unauthorized access if storage media is compromised.\ βœ” **How SecureCart Encrypts Data at Rest:** | **Service** | **Encryption Method** | **Use Case in SecureCart** | | ------------------- | --------------------- | ------------------------------------------------- | | **Amazon RDS** | AWS KMS Encryption | Protects customer order data in MySQL/PostgreSQL. | | **Amazon DynamoDB** | AES-256 Encryption | Encrypts transactional order records. | | **Amazon S3** | S3 Default Encryption | Protects stored invoices, logs, and backups. | | **Amazon EBS** | Volume Encryption | Encrypts attached storage for EC2 instances. | βœ… **Best Practices:**\ βœ” Use **AWS Key Management Service (KMS) for centralized key management**.\ βœ” Enable **S3 bucket default encryption** to avoid accidental unencrypted uploads.\ βœ” Regularly **rotate encryption keys** for enhanced security. *** #### **B. Encrypting Data in Transit** βœ” **Why?** – Prevents **eavesdropping and man-in-the-middle (MitM) attacks**.\ βœ” **How SecureCart Ensures Secure Data Transfers:** | **Encryption Type** | **Use Case in SecureCart** | | --------------------------------- | -------------------------------------------------------------- | | **TLS 1.2+ (HTTPS)** | Encrypts API calls between the frontend & backend. | | **AWS Certificate Manager (ACM)** | Manages SSL certificates for ALB & API Gateway. | | **IPsec VPN** | Secure communication between AWS and on-premises data centers. | | **AWS PrivateLink** | Private access to AWS services (e.g., S3, DynamoDB). | βœ… **Best Practices:**\ βœ” Enforce **TLS 1.2 or later** for all network communications.\ βœ” Use **AWS PrivateLink instead of exposing API endpoints publicly**.\ βœ” Regularly **renew SSL/TLS certificates** via ACM. *** ### **πŸ”Ή Step 3: Implementing Access Policies for Data Security** βœ” **Why?** – Prevents **unauthorized access** and **enforces the principle of least privilege**.\ βœ” **How SecureCart Restricts Data Access:** #### **A. IAM & Resource Policies for Data Access Control** | **Policy Type** | **Applies To** | **Use Case** | | --------------------- | -------------------- | -------------------------------------------------------------- | | **IAM Policies** | IAM Roles, Users | Developers get read-only access to logs. | | **Resource Policies** | S3, DynamoDB, RDS | S3 bucket allows access **only from SecureCart applications**. | | **VPC Endpoints** | Private AWS Services | DynamoDB access restricted **to VPC only**. | βœ… **Best Practices:**\ βœ” **Deny all access by default**, then allow only what is needed.\ βœ” Use **IAM roles instead of static credentials** for applications.\ βœ” **Enable IAM Access Analyzer** to detect overly permissive policies. *** ### **πŸ”Ή Step 4: Implementing Data Backups & Recovery** βœ” **Why?** – Ensures **business continuity and disaster recovery (DR)**.\ βœ” **How SecureCart Implements Data Backups:** | **Data Type** | **Backup Method** | **Retention Policy** | | ----------------- | ------------------------- | ------------------------------------------------ | | **RDS Databases** | Automatic Snapshots | 7-day retention, point-in-time recovery enabled. | | **DynamoDB** | Continuous Backups (PITR) | Restores deleted/missing records. | | **S3 Logs** | Versioning & Replication | Archived in Glacier for 90 days. | βœ… **Best Practices:**\ βœ” Enable **Amazon RDS Automated Backups** for point-in-time recovery.\ βœ” Use **S3 Lifecycle Policies** to automatically transition old backups to Glacier.\ βœ” Regularly **test backup restoration procedures**. *** ### **πŸ”Ή Step 5: Implementing Data Retention & Lifecycle Management** βœ” **Why?** – Reduces **storage costs and ensures compliance**.\ βœ” **How SecureCart Manages Data Lifecycles:** | **Data Type** | **Lifecycle Policy** | **Storage Class** | | ----------------- | --------------------- | --------------------------------- | | **Order Logs** | Archive after 30 days | Amazon S3 Glacier. | | **Customer Data** | Delete after 5 years | Amazon RDS with backup retention. | | **Security Logs** | Retain for 1 year | Amazon S3 Standard-IA. | βœ… **Best Practices:**\ βœ” Define **clear data retention policies** for compliance.\ βœ” Use **S3 Lifecycle Rules** to automatically transition data to cheaper storage.\ βœ” Implement **data classification** for sensitive data. *** ### **πŸ”Ή Step 6: Monitoring & Auditing Data Security** βœ” **Why?** – Detects **unauthorized access & data breaches** in real-time.\ βœ” **How SecureCart Monitors Data Security:** | **Monitoring Tool** | **Purpose** | **Use Case in SecureCart** | | -------------------- | ------------------------------- | ------------------------------------- | | **AWS CloudTrail** | Logs all AWS API calls | Detects unauthorized database access. | | **Amazon Macie** | Scans S3 for sensitive data | Identifies exposed customer data. | | **Amazon GuardDuty** | Monitors threats | Detects suspicious API calls. | | **AWS Security Hub** | Centralized security monitoring | Aggregates security findings. | βœ… **Best Practices:**\ βœ” **Enable CloudTrail logging** across all AWS accounts.\ βœ” Use **Macie to classify and detect sensitive data in S3**.\ βœ” Regularly **review IAM activity logs for anomalies**. *** ## **πŸš€ Summary** βœ” **Encrypt all data at rest and in transit** using KMS and TLS.\ βœ” **Implement IAM & Resource Policies** to enforce access control.\ βœ” **Use automated backups and disaster recovery plans** to protect data.\ βœ” **Apply S3 Lifecycle Policies to manage data retention and cost.**\ βœ” **Monitor security logs with CloudTrail, GuardDuty, and Macie.**