Please enable JavaScript.
Coggle requires JavaScript to display documents.
S3 (S3 Access Logs (request access (requester, bucket name, request time,…
S3
S3 Access Logs
request access
requester
bucket name
request time
request action
response status
Error Code
Log delivery must be granted write on target bucket
No real time
Events
put/post/copy/delete
SNS/SQS/Lambda
Encryption
Object Level
Bucket Policy
Has principle key
wide scope of access
CRR
No retro
No SSE-C
No Lifecycle
bucket owner must have permissions
ID policies
small scope of access
Resource Policies
anonymous uers
restrict to specific http referrer
Cloudfront restriction