aws_compliance

AWS Compliance

This control checks whether the S3 bucket policy prevents principals from other AWS accounts from performing denied actions on resources in the S3 bucket.

s3_bucket_policy_restricts_cross_account_permission_changes

nist_csf_pr_ac_1

PR.AC-1

nist_csf_pr_ip_1

PR.IP-1

all_controls_s3

AWS S3 permissions granted to other AWS accounts in bucket policies should be restricted

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, FFIEC, PCI, NIST, HIPAA, RBI CSF, GDPR, SOC 2, Audit Manager Control Tower, FedRAMP, GxP and AWS Foundational Security Best Practices controls across all your AWS accounts using Powerpipe and Steampipe.

Apache License 2.0

steampipe-mod-aws-compliance

Control: AWS S3 permissions granted to other AWS accounts in bucket policies should be restricted

Description

Usage

SQL

Tags