Aqua CSPM

S3 Bucket Encryption In Transit

Quick Info

Plugin TitleS3 Bucket Encryption In Transit
CloudAWS
CategoryS3
DescriptionEnsures S3 buckets have bucket policy statements that deny insecure transport
More InfoS3 bucket policies can be configured to deny access to the bucket over HTTP.
AWS Linkhttps://aws.amazon.com/premiumsupport/knowledge-center/s3-bucket-policy-for-config-rule/
Recommended ActionAdd statements to the bucket policy that deny all S3 actions when SecureTransport is false. Resources must be list of bucket ARN and bucket ARN with wildcard.

Detailed Remediation Steps