top of page

S3.3

S3 buckets should prohibit public write access

Severity

Cloud Platforms

Resources

Related Standards

Automated

CRITICAL

AWS

Amazon S3

AWS Foundational Best Practice, AWS Foundational Technical Review, CIS v8, PCI DSS v3.2.1, CDR, ISO27001, SOC2, NIST CSF, NIST.800-53.r5,

YES

This AWS control checks whether your S3 buckets allow public write access by evaluating the Block Public Access settings; the bucket policy; and the bucket access control list (ACL).

bottom of page