Puzzle: S3 HTTPS Only Via Bucket Policy

Hey all,

I was charged with thinking up a challenging AWS policy question around S3, and I thought, all the policies around resources are hard, especially S3. I mean, there is a reason unsecured S3 bucket data leaks hit the news like clockwork every month or so — resources policies are HARD.

As part of my new job, I get the wonderful opportunity to educate the world, so…



Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Kyler Middleton

DevNetSecOps, DevRel, cloud security chick. I will teach you, it’s unavoidable. She/Her 🏳️‍🌈🏳️‍🌈, INFJ-A, support the EFF!