In order for API Inspect to deliver its continuous discovery service on Amazon Web Services (AWS) environments, Data Theorem strictly follows Amazon’s guidance only. The following is a detailed overview on how AWS provides Read-Only access to third parties for auditing and monitoring. By Design,
- Data Theorem will not have access to any data
- Data Theorem will not have any in-line access to traffic
- Data Theorem will not have any “Write” access
- Data Theorem will not have an “account”, but rather a resource role
Using the least privilege model, Data Theorem only requires access to the following read-only AWS policies and role:
...