Amazon S3 安全和访问控制最佳实践.pdf

《Amazon S3 安全和访问控制最佳实践.pdf》由会员分享，可在线阅读，更多相关《Amazon S3 安全和访问控制最佳实践.pdf（47页珍藏版）》请在三个皮匠报告上搜索。

1、 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.S T G 3 1 6Amazon S3 security and access control best practicesAkshat SandhPrincipal Product MBryant CutlerPrincipal E 2025,Amazon Web Services,Inc.or its affiliates

2、.All rights reserved.AgendaAWS security tenetsBest practices for S3Actionable next steps 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.How does AWS think about security?2025,Amazon Web Services,Inc.or its affilia

3、tes.All rights reserved.Security is one partof an integrated whole 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.The real value of AWSs Security,Durability,Availability,and Performance,is how they enable AWS customers to meet their business requirements 2025,Amazon Web Services,

4、Inc.or its affiliates.All rights reserved.Ensure continuous businessaccess to dataMinimize or mitigate risks to the businessDeliver business value efficientlyCustomer requirements 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.Security is everyones jobDesignersOperatorsCustomers

5、2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.Continuousiterativeimprovementis a must 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.Checksums enabled by defaultBPA enabled by defaultSOAP interface end of lifeACLs disabled by defaultSSE-C disabled by defaultA

6、ll new objects encryptedSOON 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.Security isntonly about saying“no”2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.”A ship in harbor is safe,but thats not what ships are built for.”Disconnected dataS3 is built 2025,Ama