avatarTeri Radichel

Free AI web copilot to create summaries, insights and extended knowledge, download it at here

3077

Abstract

gital pieces of art as NFTs. If you are not yet familiar with NFTs, <a href="https://readmedium.com/are-socks-the-new-tulips-4825ab13695b">here’s</a> a quick 101 on them. Over one weekend, with pieces selling from 10s to 100s of thousands of dollars each, Beeple — an ‘average’ dad driving an ‘average’ car — netted 69 million.</p><p id="457e">That, is why you should know of the name Beeple. And why NFTs might be a trend you want to learn more about.</p><p id="f997">Why would anyone buy the ‘digital’ artwork, you may ask? Good question. After all, I just snipped a photo of it above, and pasted it right here, for free, where you also enjoyed it, also for free.<b> So why would someone pay up to 777,777 for one digital artwork, when we can all have access to it?</b></p><p id="9f8f">The sense of ownership, proprietary rights to the ‘original’.</p><p id="1545">Still doesn’t make sense? Well, you are not alone. And not wrong. It does not really make sense.</p><p id="2427">The world is going places we do not yet understand.</p><p id="5b1b">Stay with me for the ride!</p><h2 id="d280">Enter Liink.</h2><p id="735e">And JPM Coin, and Onyx, and Format, and Confirm.</p><p id="83cc">JP Morgan is on top of this.</p><p id="14b8">Here are the cole’s notes.</p><p id="a5ce">A couple of years ago [yes, already], JP Morgan created JPM Coin, a digital coin used to speed up transactions and transfers of USD across the network, built on an Ethereum network they called Quorom. JPM Coin is stable coin, pegged 1:1 to the US Dollar [<a href="https://readmedium.com/three-crypto-trends-to-get-into-early-5cf090b07334">here</a> is a simple explanation of stable coins].</p><p id="1047">If you are asking, why would JP Morgan need a blockchain network to simply trade coins where their value 1:1 US Dollar? Well;</p><ul><li>the coin can be exchanged between entities digitally, instantaneously, without the intermediate ‘processing’ period we sometimes have to get our money transferred.</li><li>To transfer a digital coin, you need a blockchain platform. Hence Quorom.</li><li>Because it is cool and they wanted to get into this! So ‘cool’ that some digital coin enthusiasts don’t even recognize this one as a true digital coin — discrimination in digital coins already!</li></ul><p id="7650">Once they set up Quorom, JPM started a payment messaging system, Liink.</p><p id="1759">The “IIN” in the middle stands for interbank information network. Any bank which joins this network can have access to the ledger of transactions done on the network, i.e. can see every payment which went through on Quorom.</p><p id="e47f">Also using Quorom, JP Morgan went on to start new tech-enabled solutions such as Confirm and Format [JPM seems to be into puns].</p><p id="1124"><b>Confirm </b>is used to validate account info before payment is done, this is so costs are not wasted on potentially fraudulent transactions. <b>Format</b>, you guessed it, checks if the format for payments match and conform to the receiving party’s country’s requirements.</p><p id="2f5f">Today, JPM no longer ow

Options

ns Quorom, it spun it off and invested in the new owner — ConsenSys — so it can remain independent as it creates more tech solutions.</p><h2 id="c8e1">Next up: Diem.</h2><p id="000b">Diem is Facebook’s digital currency — because, why not.</p><p id="ebaf">Facebook has been trying to get regulatory approval to issue its own stable coin, on its own payment network, Diem Association, for a while. It finally got approval last month.</p><p id="d413">Why is this one in particular an interesting one to watch, especially since it seems everyone wants to issue their own coin? Exhibit A [or F!]: Amazon made a similar announcement recently.</p><p id="3ed3">A Facebook coin has one major advantage — its potential customer base. Diem in itself is ‘just another stable coin’. Facebook however has almost 3 billion users. If, say, 15% of these users adopt Diem, it will far supersede the use of any digital currency so far, including Bitcoin. It will also make it a lot more ‘mainstream’ given the on-the-ground average-person users of Facebook.</p><p id="aedf">Worth keeping an eye out for. Might change the digital currency story.</p><p id="3be4">So, less awkward intro than you expected, I hope? Willing to go for another date? My guess is ‘crypto’ will keep us interested for a few more.</p><p id="2b4a">Quick note, some stories above are not as recent, e.g. JP Morgan’s plays. I included them because the stories continue to evolve, and these terms are making it into mainstream media; this gives the background of what you might come across more often now.</p><p id="f261">Keep watch for more crypto news, and shoot me a response if you want to learn of anything in particular.</p><p id="d2e8">Feel free to join my newsletter <a href="https://www.getrevue.co/profile/ialmouaswas">here</a>, where I send a summary of my weekly articles, usually including one crypto-based.</p><div id="e0c4" class="link-block"> <a href="https://readmedium.com/are-socks-the-new-tulips-4825ab13695b"> <div> <div> <h2>Are SOCKS the New Tulips?</h2> <div><h3>How socks became digital and memes became coins.</h3></div> <div><p>medium.com</p></div> </div> <div> <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/1*kvKzo_U2ugHXMvGyulkurw.jpeg)"></div> </div> </div> </a> </div><div id="8299" class="link-block"> <a href="https://readmedium.com/three-crypto-trends-to-get-into-early-5cf090b07334"> <div> <div> <h2>Three Crypto Trends to Get into Early</h2> <div><h3>Get ready to pick your favourite content creator.</h3></div> <div><p>medium.com</p></div> </div> <div> <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/1*E7hcmlmlYS2afQMj4q9TpQ.png)"></div> </div> </div> </a> </div></article></body>

Passing a Parameter List Into A Container That Runs an AWS Deployment

ACM.392 Passing in a parameter value for an AWS SSM Parameter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

⚙️ Check out my series on Automating Cybersecurity Metrics | Code.

🔒 Related Stories: Container Security | AWS Security

💻 Free Content on Jobs in Cybersecurity | ✉️ Sign up for the Email List

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

In the last I explained how I’m going to production and non-production environments and repositories in my organization. Repositories are one of the keys to governance and security in your cloud account.

Before I proceed with creating accounts, I need to clean up my Systems Manager Parameter code. I’m also not sure I need all my parameters but for now I’m leaving them.

The issue is that the script was initially run by root but now it’s run by my rootadminrole in a container. The script in the container cannot be interactive so I have to pass some values into the container instead.

I wrote about trying to store those parameters in an SSM parameter, but I’d have to manually create a parameter to automate the creation of a parameter and that doesn’t really make sense. For these simple scripts I want to pass in the parameter, but how should I do it?

ry I could pass in domain=something the domain parameter and org=something for the org parameter but what’s wrong with that picture? Our parameter list is going to change every time and become very messy. I want a standard input list, so the last argument passed into the container is going to be an optional single argument which is a list of parameters.

Domain SSM parameter

I’m removing dynamic SSM parameters as they pose the problems mentioned in this post:

I move the parameters out of the organization deploy script put the org and domain parameters into their own files. As I mentioned I’m not sure I still need the environment parameter but it’s easy to add if needed.

I request the values in the local test script and pass it into the container as parameters in this format:

[name=value,name=value,name=value]

I added some validation when the parameter is retrieved in job/run.sh but could be better. I’m not going to even post it here.

I added a common function to parse the value of the parameter:

I move over my parameter_functions.sh file from the POC codebase and adjust it as explained here:

Now I can call my generic functions to get and set a parameter in my deploy scripts. Here’s an example for my email domain:

That’s it. Now I can create parameters easily with the container that assumes a role with MFA.

Other stories on SSM Parameter store if you missed them:

Next I’ll start building out my new organization structure.

Follow for updates.

Teri Radichel | © 2nd Sight Lab 2023

About Teri Radichel:
~~~~~~~~~~~~~~~~~~~~
⭐️ Author: Cybersecurity Books
⭐️ Presentations: Presentations by Teri Radichel
⭐️ Recognition: SANS Award, AWS Security Hero, IANS Faculty
⭐️ Certifications: SANS ~ GSE 240
⭐️ Education: BA Business, Master of Software Engineering, Master of Infosec
⭐️ Company: Penetration Tests, Assessments, Phone Consulting ~ 2nd Sight Lab
Need Help With Cybersecurity, Cloud, or Application Security?
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
🔒 Request a penetration test or security assessment
🔒 Schedule a consulting call
🔒 Cybersecurity Speaker for Presentation
Follow for more stories like this:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ 
❤️ Sign Up my Medium Email List
❤️ Twitter: @teriradichel
❤️ LinkedIn: https://www.linkedin.com/in/teriradichel
❤️ Mastodon: @teriradichel@infosec.exchange
❤️ Facebook: 2nd Sight Lab
❤️ YouTube: @2ndsightlab
Ssm
Parameter Store
Get
Put
Cloud Security
Recommended from ReadMedium