AWS > S3 >

S3 Bucket Encryption In Transit

HIGH

Source

CloudSploit

s3-bucket-encryption-in-transit

management console

S3 Bucket Encryption In Transit

Ensures S3 buckets have bucket policy statements that deny insecure transport

S3 bucket policies can be configured to deny access to the bucket over HTTP.

Recommended Actions

Add statements to the bucket policy that deny all S3 actions when SecureTransport is false. Resources must be list of bucket ARN and bucket ARN with wildcard.

Links

https://aws.amazon.com/premiumsupport/knowledge-center/s3-bucket-policy-for-config-rule/

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.