By default, the newly created buckets are private.
We can setup access control to the buckets using;
- Bucket Policies;
- ACL (Access Control Lists) ;
We can setup access log on the S3 buckets.
Encryption :
Two Types;
- In Transit (SSO/TLS, just using HTTPS)- At Rest (Server side and client side)
- Server Side; S3 Managed Key - SSE S3
- AWS Key Management Service, Managed Keys - SSE-KMS
- Server Side encryption with customer provided keys - SSE - C
- Client Side encryption.
No comments:
Post a Comment