module/ConfigurationProvider/ControlConfigurations/Services/S3.json
|
{
"FeatureName": "S3", "Reference": "aka.ms/azsktcp/s3", "IsMaintenanceMode": false, "Controls": [ { "ControlID": "AWS_S3_AuthN_Disable_Public_Access", "Description": "AWS S3 buckets must have public access disabled", "Id": "S3100", "ControlSeverity": "High", "MethodName": "CheckPublicAccess", "Automated": "Yes", "DisplayName": "AWS S3 buckets must have public access disabled", "Category": "Deploy controls to restrict network traffic", "ControlRequirements": "Restrict network traffic flows", "Rationale": "Data in S3 buckets that have public access enabled can be downloaded by anyone on the internet without authentication. This can lead to a compromise of corporate data.", "Recommendation": "Please follow the guidance on the following web page to learn how to disable public access on S3 buckets: https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-control-block-public-access.html", "Tags": [ "AuthN", "S3", "Baseline", "Automated" ], "Enabled": false, "CustomTags": [ "Daily" ] } ] } |