How to Properly Secure an S3 Bucket

By Moosa Khalid

Learn to secure your S3 buckets.

1 hour
  • 12 Lessons
  • 1 Hands-On Lab

About the course

In this course, we review the methods available to us for securing S3 buckets and objects and how to use them. We also apply best security practices and see what other AWS services are at our disposal to help secure our S3 buckets and even remediate security issues.

Have you ever stumbled across online articles detailing the sad anecdotes of how insecure S3 buckets caused tons of data to be breached?

The reality is that over time, S3 has become a critical service that is highly available and durable and stores all forms of data, whether public or private. With increasing usage and varying use cases, the probability of attacks also increases, which is why it’s essential to learn to secure our data. One thing to remember is that because the use case depends on the organization/user/application, so does the security of the data being stored. So to sum it up, data security in S3 starts and ends with us—the humans.

AWS has introduced tons of features to help tackle all attack vectors; however, it’s up to the user to decide which ones they need to use. You don’t want to restrict access so much that it’s a hassle to let anyone read or list your data, but you also want to make sure access isn’t so open that it allows complete strangers permission to read from and upload to your bucket.

  • Chapter 1 5 Lessons Introduction 10:01

    An Important Note About A Cloud Guru and Linux Academy Courses

    1:19

    About the Training Architect

    1:33

    What You Should Know Going into This Course

    1:07

    Why Secure S3 — and Why Being Distrustful Is Good

    2:10

    S3 Security Best Practices — 10,000-Foot Overview

    3:52
  • Chapter 2 6 Lessons Securing Your S3 Data 53:59

    Securing S3 through S3 Bucket Policies

    20:06

    Securing S3 through IAM Policies

    15:13

    Understanding and Using S3's Block Public Access Feature

    9:33

    Other S3 Features for Security: Versioning, Replication, Locking, Encryption

    3:03

    Auditing Access and Remediating S3 Security Issues

    6:04

    Securing your S3 Bucket from A to Z

    0:00 Hands-On Lab
  • Chapter 3 1 Lesson Conclusion 1:25

    Conclusion and What’s Next

    1:25

What are Hands-on Labs

What's the difference between theoretical knowledge and real skills? Practical real-world experience. That's where Hands-on Labs come in! Hands-on Labs are guided, interactive experiences that help you learn and practice real-world scenarios in real cloud environments. Hands-on Labs are seamlessly integrated in courses, so you can learn by doing.

Get Started
Who’s going to be learning?
Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!