# iam

10 articlestagged with “iam”

IAM for AI Systems Assessment

Assessment of identity and access management vulnerabilities specific to AI service deployments.

Bedrock Attack Surface

Comprehensive red team methodology for Amazon Bedrock: model invocation API abuse, guardrails bypass techniques, custom model endpoint exploitation, IAM misconfigurations, knowledge base poisoning, and Bedrock Agents exploitation.

awsbedrockguardrails-bypassprompt-injectionknowledge-basebedrock-agentsiamred-team

Advanced

AWS IAM for AI Services

IAM exploitation patterns for AWS AI services: overprivileged roles, cross-account model access, service-linked roles, resource policies for Bedrock and SageMaker, and privilege escalation through AI-specific IAM actions.

awsiamprivilege-escalationcross-accountservice-linked-rolesresource-policiesbedrocksagemaker

Advanced

AWS Bedrock Security Deep Dive

Advanced security assessment of AWS Bedrock covering model invocation controls, guardrails bypass testing, VPC configurations, and red team methodologies for foundation model APIs.

cloud-ai-securityawsbedrockred-teamiam

Advanced

IAM Best Practices for Cloud AI Services

Cross-cloud IAM best practices for securing AI services on AWS, Azure, and GCP, covering least privilege, service identity management, cross-account access, and policy automation.

cloud-ai-securityiamawsazuregcpleast-privilege

Intermediate

Cloud AI IAM Misconfigurations

Common IAM misconfigurations in cloud AI services and their exploitation for unauthorized model access.

cloud-aiiammisconfigurationsaccess-control

Intermediate

GCP IAM for AI Services

IAM exploitation patterns for GCP AI services: service account exploitation, Workload Identity abuse, VPC Service Controls for AI, and privilege escalation through Vertex AI permissions.

gcpiamservice-accountsworkload-identityvpc-service-controlsprivilege-escalationvertex-ai

Advanced

Security Controls Comparison Matrix

Side-by-side comparison of AWS, Azure, and GCP AI security controls: IAM patterns, content filtering, guardrails, network isolation, logging, and threat detection across cloud providers.

multi-cloudcomparisonawsazuregcpsecurity-controlscontent-filteringguardrailsiam

Intermediate

AWS SageMaker Red Teaming

End-to-end walkthrough for red teaming ML models deployed on AWS SageMaker: endpoint enumeration, IAM policy analysis, model extraction testing, inference pipeline exploitation, and CloudTrail log review.

awssagemakercloudmodel-extractioniaminference-pipelinewalkthrough

Intermediate

GCP Vertex AI Security Testing

End-to-end walkthrough for security testing Vertex AI deployments on Google Cloud: endpoint enumeration, IAM policy analysis, model serving exploitation, pipeline assessment, and Cloud Audit Logs review.

gcpvertex-aicloudmodel-servingiampipelineswalkthrough

Intermediate