AWS Lambda now offers Code Signing in GovCloud Regions (AWS GovCloud (US-West) and AWS GovCloud (US-East)), which allows administrators to ensure that only trusted and verified code is deployed to Lambda functions. This feature uses AWS Signer, a managed code signing service. When code is deployed, Lambda checks the signatures to confirm the code hasn’t been altered and is signed by trusted developers.
Administrators can create Signing Profiles in AWS Signer and use AWS Identity and Access Management (IAM) to manage user access. Within Lambda, they can specify allowed signing profiles for each function and configure whether to warn or reject deployments if signature checks fail.
There is no extra charge for using this feature. For more details, you can refer to the AWS Region table, the AWS blog, the Lambda developer guide, or the Signer developer guide.
Categories: marketing:marchitecture/serverless,general:products/aws-govcloud-us,general:products/aws-lambda
Source: Amazon Web Services
Latest Posts
- Amazon Verified Permissions now supports policy store aliases and named policies and policy templates
- Amazon WorkSpaces Personal now supports unique DNS names for PrivateLink
- AWS announces general availability of Smithy-Java client framework
- (Updated) Microsoft 365 Copilot: User-day export for Copilot dashboard metrics in public preview [MC1222978]
