Ensure that the S3 bucket has lifecycle configuration enabled

Lifecycle configuration is set of rules that defines the action S3 takes on your objects. It is important to configure these lifecycle rules for security and cost optimization purposes.

Suggest Edits

Risk Level: Low
Cloud Entity: Simple Storage Service (S3)
CloudGuard Rule ID: D9.CFT.OPE.07
Covered by Spectral: Yes
Category: Storage

GSL LOGIC

AWS_S3_Bucket should have LifecycleConfiguration.Rules contain-any [ Status='Enabled' ]

REMEDIATION

From CFT
Configure AWS::S3::Bucket LifecycleConfiguration.Rules to ensure proper transition and expiration rules for objects.

References

https://docs.aws.amazon.com/AmazonS3/latest/userguide/how-to-set-lifecycle-configuration-intro.html

Simple Storage Service (S3)

Companies today need the ability to simply and securely collect, store, and analyze their data at a massive scale. Amazon S3 is object storage built to store and retrieve any amount of data from anywhere ï¿½ï¿½ï¿½ web sites and mobile apps, corporate applications, and data from IoT sensors or devices. It is designed to deliver 99.999999999% durability, and stores data for millions of applications used by market leaders in every indu

Compliance Frameworks

AWS CloudFormation ruleset

Updated about 1 year ago