This whitepaper is for historical reference only. Some content might be outdated and some links might not be available.

# Infrastructure Security
<a name="infrastructure-security"></a>

AWS provides several security capabilities and services to increase privacy and control network access. These include: 
+  Network firewalls built into Amazon VPC let you create private networks and control access to your instances or applications. Customers can control encryption in transit with TLS across AWS services. 
+  Connectivity options that enable private, or dedicated, connections from your office or on-premises environment. 
+  DDoS mitigation technologies that apply at layer 3 or 4 as well as layer 7. These can be applied as part of application and content delivery strategies. 
+  Automatic encryption of all traffic on the AWS global and regional networks between AWS secured facilities.