Simple S3 Security

S3 leads a dual life, on the one hand you can use it to host a website, on the other you might use it to store your companies most sensitive data. Perhaps this is why S3 data breaches are so common in spite of buckets being private by default. In this talk we’ll cover the different options for securing S3 buckets, from ACLs to bucket policies and IAM roles, and including the new options to block public access and define S3 Access Points.