Features
S3 Bucket
- [S3.2] S3 buckets should prohibit public read access
- [S3.3] S3 buckets should prohibit public write access
- [S3.4] S3 buckets should have server-side encryption enabled
- [S3.5] S3 buckets should require requests to use Secure Socket Layer
- [S3.14] S3 buckets should use versioning
- A lifecycle policy for non-current versions of objects
[S3.10] S3 buckets with versioning enabled should have lifecycle policies configured - Enforcing that the bucket owner owns every object in the bucket.
DynamoDB Table
IAM
- Managed policy for accessing the S3 bucket and keys as well as the DynamoDB table.