S3 Bucket Policies - Require TLS to access the S3 Bucket.

An S3 Bucket policy that denies any access to the S3 bucket that is not encrypted in-transit (uses HTTP instead of HTTPS) .

Tags

API and CLI Access

Console Access

Source

AWS Blog

How-to |Policy|CloudFormation |AWS CLI

Missing Parameters

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Principal": {
                "AWS": "*"
            },
            "Action": [
                "s3:*"
            ],
            "Resource": [
                "arn:aws:s3:::/*",
                "arn:aws:s3:::"
            ],
            "Effect": "Deny",
            "Condition": {
                "Bool": {
                    "aws:SecureTransport": "false"
                }
            }
        }
    ]
}

* Required field