Should manage security groups

[jschementi]

Currently Riker will create one security group, and requires the user to specify the rules. However, incorrectly doing this will leave a deployment unusable. Riker should create as many security groups as it needs to, setting the appropriate ports as necessary (for example, HTTPS load balancer needs tcp:443 and tcp:80, but instances only need tcp:80 and tcp:22).