The post is written by an AWS VP of technology. They probably plan to deploy this as an enterprise service, or use the tech, so you really have to hype during acquisition the aspects you intend to sell.
The big sell for enterprises is actually what probably invalidates the statement you highlighted. Compliance, administrative controls, and audit almost always are significant threat surfaces that are exposed deliberately. Ideally to only the right people, but it's basically the equivalent of a cryptographic back door. It's less secure by design, but for a purpose.
The big sell for enterprises is actually what probably invalidates the statement you highlighted. Compliance, administrative controls, and audit almost always are significant threat surfaces that are exposed deliberately. Ideally to only the right people, but it's basically the equivalent of a cryptographic back door. It's less secure by design, but for a purpose.