What should a solutions architect do to ensure that all objects uploaded to an Amazon S3 bucket are encrypted?

September 16, 2021 by Admin

What should a solutions architect do to ensure that all objects uploaded to an Amazon S3 bucket are encrypted?

  • Update the bucket policy to deny if the PutObject does not have an s3:x-amz-acl header set.
  • Update the bucket policy to deny if the PutObject does not have an s3:x-amz-acl header set to private.
  • Update the bucket policy to deny if the PutObject does not have an aws:SecureTransport header set to true.
  • Update the bucket policy to deny if the PutObject does not have an x-amz-server-side-encryption header set.

Leave a Reply