Amazon S3 starts rolling out new security best practice to new and existing buckets by default

Amazon S3 Default Bucket Security Setting Update

Amazon S3 is deploying a new default bucket security setting which will automatically disable server-side encryption with customer-provided keys (SSE-C) for all new general purpose buckets. For existing buckets in AWS accounts with no SSE-C encrypted objects, S3 will also disable SSE-C for all new write requests. AWS accounts with SSE-C usage will not see changes to existing buckets.

What to do

• Review your S3 buckets to ensure they meet your security requirements.
• Update your applications to handle the changes in encryption settings.
• Visit the S3 User Guide for more information.

Source: AWS release notes

If you need further guidance on AWS, our experts are available at AWS@westloop.io. You may also reach us by submitting the Contact Us form.