Security researcher, Rust devotee, and speaker at fwd:cloudsec and Black Hat USA. My work sits at the intersection of cloud workloads and OS internals, with a focus on real-world impact and sturdy code.| Naor Haziz
When running containers on Amazon ECS using EC2 instances, there’s a lot happening under the hood on each host. Understanding these internals is crucial for operating ECS securely. In this first part of our deep‑dive, we’ll explore how ECS on EC2 works – focusing on the ECS agent, the IAM roles and credential delivery mechanism, and where the boundaries (and lack thereof) lie between tasks on the same host. (In Part 2, we’ll leverage this knowledge to examine a real‑world cross...| Naor Haziz