top of page
AWS Foundational Security Best Practice
S3.2
S3 buckets should prohibit public read access
Severity
Cloud Platforms
Resources
CRITICAL
AWS
Amazon S3
This AWS control checks whether your S3 buckets allow public read access by evaluating the Block Public Access settings; the bucket policy; and the bucket access control list (ACL).
bottom of page