Data Perimeters: Beyond the Marketing
Matt Luttrell
fwd:cloudsec North America 2026 · Day 1
In this insightful talk, Matt Luttrell, a Principal Security Engineer at AWS, delves into the often-complex world of **data perimeters** in cloud environments. Moving beyond the marketing hype, Luttrell provides a pragmatic and deeply technical examination of how data perimeters function within AWS, highlighting the "sharp edges" or "complicators" that can undermine their effectiveness. His team at AWS not only owns the conceptual framework for data perimeters but also manages an internal testing platform dedicated to validating that AWS services adhere to these critical security constraints.
AI review
Luttrell is the right person giving the right talk — this is insider knowledge from the team that owns the data perimeter concept and runs the internal test platform that validates it. The systematic breakdown of complicators across all three perimeter types, with honest admissions like 'no real great mitigation' for pre-signed URL abuse, is exactly the kind of practitioner candor that makes fwd:cloudsec worth attending.