Sensitive ephemeral data in S3 has proper lifecycle policy

Updated on 24 Aug 2023
1 Minute to read

Dark
Light

Article summary

Did you find this summary helpful?

Thank you for your feedback

Description

Modify the bucket lifecycle policy to constrain data retention period consistent with organizational policies.

Rationale

The bucket was found to have sensitive data. Based on its meta-data and access patterns, it appears to hold ephemeral data such as interim analytical results from systems such as AWS Athena or other. It is a best practice to configure a lifecycle policy for such data to avoid proliferation of unused sensitive data.

Remediation

From the console

Follow the guidance on managing your storage lifecycle to modify the bucket settings for data expiration and lifecycle.

What's Next

Sensitive data found in non-production environment

Table of contents

Description
Rationale
Remediation