avatarTeri Radichel

Free AI web copilot to create summaries, insights and extended knowledge, download it at here

3077

Abstract

gital pieces of art as NFTs. If you are not yet familiar with NFTs, <a href="https://readmedium.com/are-socks-the-new-tulips-4825ab13695b">here’s</a> a quick 101 on them. Over one weekend, with pieces selling from 10s to 100s of thousands of dollars each, Beeple — an ‘average’ dad driving an ‘average’ car — netted 69 million.</p><p id="457e">That, is why you should know of the name Beeple. And why NFTs might be a trend you want to learn more about.</p><p id="f997">Why would anyone buy the ‘digital’ artwork, you may ask? Good question. After all, I just snipped a photo of it above, and pasted it right here, for free, where you also enjoyed it, also for free.<b> So why would someone pay up to 777,777 for one digital artwork, when we can all have access to it?</b></p><p id="9f8f">The sense of ownership, proprietary rights to the ‘original’.</p><p id="1545">Still doesn’t make sense? Well, you are not alone. And not wrong. It does not really make sense.</p><p id="2427">The world is going places we do not yet understand.</p><p id="5b1b">Stay with me for the ride!</p><h2 id="d280">Enter Liink.</h2><p id="735e">And JPM Coin, and Onyx, and Format, and Confirm.</p><p id="83cc">JP Morgan is on top of this.</p><p id="14b8">Here are the cole’s notes.</p><p id="a5ce">A couple of years ago [yes, already], JP Morgan created JPM Coin, a digital coin used to speed up transactions and transfers of USD across the network, built on an Ethereum network they called Quorom. JPM Coin is stable coin, pegged 1:1 to the US Dollar [<a href="https://readmedium.com/three-crypto-trends-to-get-into-early-5cf090b07334">here</a> is a simple explanation of stable coins].</p><p id="1047">If you are asking, why would JP Morgan need a blockchain network to simply trade coins where their value 1:1 US Dollar? Well;</p><ul><li>the coin can be exchanged between entities digitally, instantaneously, without the intermediate ‘processing’ period we sometimes have to get our money transferred.</li><li>To transfer a digital coin, you need a blockchain platform. Hence Quorom.</li><li>Because it is cool and they wanted to get into this! So ‘cool’ that some digital coin enthusiasts don’t even recognize this one as a true digital coin — discrimination in digital coins already!</li></ul><p id="7650">Once they set up Quorom, JPM started a payment messaging system, Liink.</p><p id="1759">The “IIN” in the middle stands for interbank information network. Any bank which joins this network can have access to the ledger of transactions done on the network, i.e. can see every payment which went through on Quorom.</p><p id="e47f">Also using Quorom, JP Morgan went on to start new tech-enabled solutions such as Confirm and Format [JPM seems to be into puns].</p><p id="1124"><b>Confirm </b>is used to validate account info before payment is done, this is so costs are not wasted on potentially fraudulent transactions. <b>Format</b>, you guessed it, checks if the format for payments match and conform to the receiving party’s country’s requirements.</p><p id="2f5f">Today, JPM no longer ow

Options

ns Quorom, it spun it off and invested in the new owner — ConsenSys — so it can remain independent as it creates more tech solutions.</p><h2 id="c8e1">Next up: Diem.</h2><p id="000b">Diem is Facebook’s digital currency — because, why not.</p><p id="ebaf">Facebook has been trying to get regulatory approval to issue its own stable coin, on its own payment network, Diem Association, for a while. It finally got approval last month.</p><p id="d413">Why is this one in particular an interesting one to watch, especially since it seems everyone wants to issue their own coin? Exhibit A [or F!]: Amazon made a similar announcement recently.</p><p id="3ed3">A Facebook coin has one major advantage — its potential customer base. Diem in itself is ‘just another stable coin’. Facebook however has almost 3 billion users. If, say, 15% of these users adopt Diem, it will far supersede the use of any digital currency so far, including Bitcoin. It will also make it a lot more ‘mainstream’ given the on-the-ground average-person users of Facebook.</p><p id="aedf">Worth keeping an eye out for. Might change the digital currency story.</p><p id="3be4">So, less awkward intro than you expected, I hope? Willing to go for another date? My guess is ‘crypto’ will keep us interested for a few more.</p><p id="2b4a">Quick note, some stories above are not as recent, e.g. JP Morgan’s plays. I included them because the stories continue to evolve, and these terms are making it into mainstream media; this gives the background of what you might come across more often now.</p><p id="f261">Keep watch for more crypto news, and shoot me a response if you want to learn of anything in particular.</p><p id="d2e8">Feel free to join my newsletter <a href="https://www.getrevue.co/profile/ialmouaswas">here</a>, where I send a summary of my weekly articles, usually including one crypto-based.</p><div id="e0c4" class="link-block"> <a href="https://readmedium.com/are-socks-the-new-tulips-4825ab13695b"> <div> <div> <h2>Are SOCKS the New Tulips?</h2> <div><h3>How socks became digital and memes became coins.</h3></div> <div><p>medium.com</p></div> </div> <div> <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/1*kvKzo_U2ugHXMvGyulkurw.jpeg)"></div> </div> </div> </a> </div><div id="8299" class="link-block"> <a href="https://readmedium.com/three-crypto-trends-to-get-into-early-5cf090b07334"> <div> <div> <h2>Three Crypto Trends to Get into Early</h2> <div><h3>Get ready to pick your favourite content creator.</h3></div> <div><p>medium.com</p></div> </div> <div> <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/1*E7hcmlmlYS2afQMj4q9TpQ.png)"></div> </div> </div> </a> </div></article></body>

Resource handler returned message: “The provided policy document does not meet the requirements of the specified policy type.”

Error message for AWS CloudFormation with a Service Control Policy is *Not Helpful* (or any IAM-like policy)

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

⚙️ Check out my series on Automating Cybersecurity Metrics | Code.

🔒 Related Stories: Bugs | AWS Security | Secure Code

💻 Free Content on Jobs in Cybersecurity | ✉️ Sign up for the Email List

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

I’m trying to deploy a service control policy with CloudFormation. This should be straightforward. I got the policy working without an fn::ImportValue that references a value in another stack. I cannot find any documentation saying this won’t work. This is standard CloudFormation so I presume it is OK.

Whenever I replace the ARN with the Fn::ImportValue I get this error which is completely unhelpful:

“The provided policy document does not meet the requirements of the specified policy type.”

This error says nothing. I am clearly adding a valid policy type. I’ve already deployed it correctly with an ARN. The problem has to do with the FN::ImportValue statement. It seems like whatever code is parsing the policy could figure out the problem with my statement and tell me how to fix it with a more helpful error message.

Fn::ImportValue and ImportValue in policy documents seem especially tricky and would be helpful if AWS provided more examples of pulling ARNs from outputs and including them in a policy. Beyond that, the error message should be useful with a line number and syntax problem.

I finally just gave up on the whole idea of using an import and instead formulated my ARN with the AWS::AccountId and hardcoded it in the template as I spent entirely too long on this.

Then, I got the same error when I tried to add two additional actions to the list of actions in my policy.

I don’t know what the first problem was with my ImportValue statement (yet) but in the second case I simply forgot to put brackets around my list when I turned a single string into multiple actions. It seems like this is a reasonable thing for a CloudFormation policy parser to decipher and provide an appropriate error message.

Then, I was missing a comma after the brackets I added. This also seems like something a parser could easily decipher.

I happen to instantly see my problem in those last two cases after years of CloudFormation. Those new to CloudFormation might not spot it so quickly and waste a lot of time trying to resolve the issue because they might not realize that the syntax is different when you add one element or a list of elements. [Why? A list of one element should work and would be consistent in all cases and example code.]

Be kind to customers. Provide a better policy parser that presents better error messages for policies of any kind in AWS when deploying with CloudFormation. I have spent hours and days and probably months of my life on issues like this.

#awswishlist

Follow for updates.

Teri Radichel | © 2nd Sight Lab 2023

About Teri Radichel:
~~~~~~~~~~~~~~~~~~~~
⭐️ Author: Cybersecurity Books
⭐️ Presentations: Presentations by Teri Radichel
⭐️ Recognition: SANS Award, AWS Security Hero, IANS Faculty
⭐️ Certifications: SANS ~ GSE 240
⭐️ Education: BA Business, Master of Software Engineering, Master of Infosec
⭐️ Company: Penetration Tests, Assessments, Phone Consulting ~ 2nd Sight Lab
Need Help With Cybersecurity, Cloud, or Application Security?
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
🔒 Request a penetration test or security assessment
🔒 Schedule a consulting call
🔒 Cybersecurity Speaker for Presentation
Follow for more stories like this:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ 
❤️ Sign Up my Medium Email List
❤️ Twitter: @teriradichel
❤️ LinkedIn: https://www.linkedin.com/in/teriradichel
❤️ Mastodon: @teriradichel@infosec.exchange
❤️ Facebook: 2nd Sight Lab
❤️ YouTube: @2ndsightlab
Error Message
Feature Request
Service Control Policy
AWS
Cloudformation
Recommended from ReadMedium