AWS Introduces Controls to Block Public Access to S3 This week, Amazon Web Services (AWS), introduced a new feature that allows administrators to block public access to their data. This is to reduce the number of data leaks due to mismanaged Amazon S3 buckets. The “Amazon S3 Block Public Access” feature is actually a set of four security settings that administrators can activate or disable across their entire AWS account, or per-bucket basis. Once the settings have been turned on, they will apply to the current environment as well as any future buckets. In a blog post, Jeff Barr, AWS evangelist, stated that you have the ability to block public access to existing items (whether it was specified in an ACL [access control lists] or a policy) as well as to prevent public access to new items. Blocking public access to an AWS account that is used to host a business application or data lake will protect it from accidental public exposure. Our goal is to clarify that web hosting is not allowed to public access. These settings can be accessed via S3 console, command-line interface, or S3 API. Uncategorized
AWS Introduces Compliance Controls to the Backup Service Amazon Web Services (AWS), has added a new feature to its managed back-up service that allows organizations to manage their backup compliance. The company announced this week that AWS Backup Audit manager is now available in the AWS Backup service. AWS developer advocate Steve Rogers described the new tool as a way to “monitor, evaluate the compliance status your backups to comply with business and regulatory requirements” and to “generate reports to help demonstrate compliance to regulators and auditors.” Although the AWS Backup service automates basic backup tasks for users, they are still responsible for ensuring that backup policies are being followed and preparing digestible reports to help auditors. AWS claims Audit Manager makes it easier to automate both of these tasks. Rogers stated that the feature allows users to “generate automatic daily reporting.” It also includes five pre-built controls that can be switched on by users to ensure that backups meet regulatory and compliance requirements. Audit Manager includes five control templates: Uncategorized
![AWS Introduces Controls to Block Public Access to S3 This week, Amazon Web Services (AWS), introduced a new feature that allows administrators to block public access to their data. This is to reduce the number of data leaks due to mismanaged Amazon S3 buckets. The “Amazon S3 Block Public Access” feature is actually a set of four security settings that administrators can activate or disable across their entire AWS account, or per-bucket basis. Once the settings have been turned on, they will apply to the current environment as well as any future buckets. In a blog post, Jeff Barr, AWS evangelist, stated that you have the ability to block public access to existing items (whether it was specified in an ACL [access control lists] or a policy) as well as to prevent public access to new items. Blocking public access to an AWS account that is used to host a business application or data lake will protect it from accidental public exposure. Our goal is to clarify that web hosting is not allowed to public access. These settings can be accessed via S3 console, command-line interface, or S3 API.](http://marrymehawaii.com/wp-content/uploads/2022/10/picture-8.jpg)
