From the course: AWS Security Best Practices for Developers
Join today to access over 24,700 courses taught by industry experts.
S3 key points - Amazon Web Services (AWS) Tutorial
From the course: AWS Security Best Practices for Developers
S3 key points
- [Instructor] As we close this section, let's revisit some important facts about S3 that usually come up in Certification exams. Bucket policies are your primary tool to manage access in and out of your S3 bucket. The default policy if you don't specify one, is to deny access to all. You can also restrict access with ACLs, Access Control List, but this is the legacy way to do it, and bucket policies are preferred. Data encryption in transit is done using SSL/TLS, or as most people know it, HTTPS or secure HTTP. Data encryption at rest can be done using the S3 managed keys, or KMS managed keys, and we'll talk more about KMS in the next section. S3 managed encryption, SSE-S3, is the preferred method, and it does not incur additional charges. KMS managed encryption, SSE-KMS, comes with KMS service charges. It's also worth noting that you can always encrypt the files yourself prior to uploading to S3. But in this case, you…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.