Access Logging Enabled
Check S3 bucket access logging is enabled on the CloudTrail S3 bucket
Addresses: Security
Your number of S3 buckets can grow pretty fast - and so could be your painpoints.
Check S3 bucket access logging is enabled on the CloudTrail S3 bucket
Addresses: Security
Check the S3 bucket logs are not publicly accessible
Addresses: Security
Check if S3 buckets have default encryption (SSE) enabled or use a bucket policy to enforce it.
Addresses: Security
Check if S3 buckets have object versioning enabled
Addresses: Reliability
Check if S3 buckets have secure transport policy
Addresses: Security
Check if S3 buckets have policies which allow public WRITE access
Addresses: Security
Ensure S3 buckets do not allow WRITE access to AWS authenticated users through S3 ACLs.
Addresses: Security
Ensure that your AWS S3 buckets are using DNS-compliant bucket names.
Addresses: Operational Maturity
Ensure AWS S3 buckets have the MFA Delete feature enabled.
Addresses: Security
Ensure AWS S3 buckets do not allow public access via bucket policies.
Addresses: Security
Ensure that Amazon S3 buckets are encrypted with customer-provided AWS KMS CMKs.
Addresses: Security
Ensure Amazon S3 buckets have lifecycle configuration enabled for security and cost optimization purposes.
Addresses: Security, Operational Maturity
Ensure S3 buckets with website configuration enabled are regularly reviewed (informational).
Addresses: Security
Ensure that AWS S3 buckets use Object Lock for data protection and/or regulatory compliance.
Addresses: Security
Ensure that Amazon S3 buckets use Transfer Acceleration feature for faster data transfers.
Addresses: Operational Maturity
Ensure that your AWS S3 buckets are not publicly exposed to the Internet.
Addresses: Security
Ensure S3 buckets do not allow FULL_CONTROL access to AWS authenticated users via S3 ACLs.
Addresses: Security
Ensure AWS S3 buckets do not allow public READ access.
Addresses: Security
Ensure S3 buckets do not allow READ access to AWS authenticated users through ACLs.
Addresses: Security
Ensure AWS S3 buckets do not allow public READ_ACP access.
Addresses: Security
Ensure AWS S3 buckets do not allow READ_ACP access to AWS authenticated users using ACLs.
Addresses: Security
Ensure AWS S3 buckets do not allow public WRITE_ACP access.
Addresses: Security
Ensure AWS S3 buckets do not allow WRITE_ACP access to AWS authenticated users using ACLs.
Addresses: Security
Ensure AWS S3 buckets enforce Server-Side Encryption (SSE).
Addresses: Security
If you are not yet convinced to sign up with Cloudanix, that's not a problem. We recommend you use a comprehensive checklist which your team can use to perform a manual assessment of your workload.