This document discusses securing data in serverless applications and messaging services. It covers authentication using IAM users, roles and groups. It also covers authorization using identity-based and resource-based policies. Additionally, it discusses encrypting messages in transit using HTTPS and at rest using server-side encryption with AWS KMS customer master keys and data encryption keys. It provides examples of policies for Amazon SNS topics, SQS queues and KMS customer master keys.