AWS Rolls Out AMI Lineage to Harden Image Supply Chain

AWS introduced AMI Lineage, a service that automatically records the complete provenance of every Amazon Machine Image (AMI). The platform logs security scan results, approval states, configuration changes, and the identities of the operators involved, presenting the data in a unified dashboard and linking to AWS Config, Security Hub, and Systems Manager for a tamper‑evident audit trail.

For defenders, AMI Lineage delivers real‑time visibility into image drift and unauthorized modifications, enabling rapid detection of vulnerable or rogue AMIs. Integrated automated remediation workflows can quarantine, rebuild, or replace non‑compliant images, tightening the EC2 image supply chain, reducing attack surface, and simplifying compliance reporting.

Categories: Cloud & SaaS Security, Compliance & Regulation, SOC & Automation

Source: Read original article