tiga_aws

<h1 id="amazon-s3-%E3%81%AE%E3%82%BB%E3%82%AD%E3%83%A5%E3%83%AA%E3%83%86%E3%82%A3%E3%81%AE%E3%83%99%E3%82%B9%E3%83%88%E3%83%97%E3%83%A9%E3%82%AF%E3%83%86%E3%82%A3%E3%82%B9">
<a class="header-anchor-link" href="#amazon-s3-%E3%81%AE%E3%82%BB%E3%82%AD%E3%83%A5%E3%83%AA%E3%83%86%E3%82%A3%E3%81%AE%E3%83%99%E3%82%B9%E3%83%88%E3%83%97%E3%83%A9%E3%82%AF%E3%83%86%E3%82%A3%E3%82%B9" aria-hidden="true"></a> Amazon S3 のセキュリティのベストプラクティス</h1>
<p><span class="embed-block zenn-embedded zenn-embedded-card"><iframe id="zenn-embedded__ec35aed570d3d" src="https://embed.zenn.studio/card#zenn-embedded__ec35aed570d3d" data-content="https%3A%2F%2Fdocs.aws.amazon.com%2Fja_jp%2FAmazonS3%2Flatest%2Fuserguide%2Fsecurity-best-practices.html%23security-best-practices-prevent" frameborder="0" scrolling="no" loading="lazy"></iframe></span><a href="https://docs.aws.amazon.com/ja_jp/AmazonS3/latest/userguide/security-best-practices.html#security-best-practices-prevent" style="display:none" target="_blank" rel="nofollow noopener noreferrer">https://docs.aws.amazon.com/ja_jp/AmazonS3/latest/userguide/security-best-practices.html#security-best-practices-prevent</a></p>


<p>送信時のデータの暗号化を強制するには、Amazon S3 バケットのポリシーで aws:SecureTransport 条件を使用して、HTTPS (TLS) 経由での暗号化された接続のみを許可することをお勧め</p>


<h1 id="%E3%80%90%E3%82%B2%E3%83%BC%E3%83%88%E3%82%A6%E3%82%A7%E3%82%A4-vpc-%E3%82%A8%E3%83%B3%E3%83%89%E3%83%9D%E3%82%A4%E3%83%B3%E3%83%88%E3%80%91ec2%E3%81%8B%E3%82%89%E3%83%97%E3%83%A9%E3%82%A4%E3%83%99%E3%83%BC%E3%83%88%E7%B5%8C%E8%B7%AF%E3%81%A7s3%E3%81%AA%E3%81%A9%E3%81%AEaws%E3%82%B5%E3%83%BC%E3%83%93%E3%82%B9%E3%81%B8%E3%82%A2%E3%82%AF%E3%82%BB%E3%82%B9%E3%81%99%E3%82%8B">
<a class="header-anchor-link" href="#%E3%80%90%E3%82%B2%E3%83%BC%E3%83%88%E3%82%A6%E3%82%A7%E3%82%A4-vpc-%E3%82%A8%E3%83%B3%E3%83%89%E3%83%9D%E3%82%A4%E3%83%B3%E3%83%88%E3%80%91ec2%E3%81%8B%E3%82%89%E3%83%97%E3%83%A9%E3%82%A4%E3%83%99%E3%83%BC%E3%83%88%E7%B5%8C%E8%B7%AF%E3%81%A7s3%E3%81%AA%E3%81%A9%E3%81%AEaws%E3%82%B5%E3%83%BC%E3%83%93%E3%82%B9%E3%81%B8%E3%82%A2%E3%82%AF%E3%82%BB%E3%82%B9%E3%81%99%E3%82%8B" aria-hidden="true"></a> 【ゲートウェイ VPC エンドポイント】EC2からプライベート経路でS3などのAWSサービスへアクセスする</h1>
<p><span class="embed-block zenn-embedded zenn-embedded-card"><iframe id="zenn-embedded__65228afc4c94b" src="https://embed.zenn.studio/card#zenn-embedded__65228afc4c94b" data-content="https%3A%2F%2Fblog.serverworks.co.jp%2F2022%2F07%2F08%2F122037" frameborder="0" scrolling="no" loading="lazy"></iframe></span><a href="https://blog.serverworks.co.jp/2022/07/08/122037" style="display:none" target="_blank" rel="nofollow noopener noreferrer">https://blog.serverworks.co.jp/2022/07/08/122037</a></p>
<p><img src="https://storage.googleapis.com/zenn-user-upload/41f22ecff9fd-20231120.png" loading="lazy" class="md-img"></p>


<p><span class="embed-block zenn-embedded zenn-embedded-card"><iframe id="zenn-embedded__38e75217f67b1" src="https://embed.zenn.studio/card#zenn-embedded__38e75217f67b1" data-content="https%3A%2F%2Faws.amazon.com%2Fjp%2Fblogs%2Farchitecture%2Fchoosing-your-vpc-endpoint-strategy-for-amazon-s3%2F" frameborder="0" scrolling="no" loading="lazy"></iframe></span><a href="https://aws.amazon.com/jp/blogs/architecture/choosing-your-vpc-endpoint-strategy-for-amazon-s3/" style="display:none" target="_blank" rel="nofollow noopener noreferrer">https://aws.amazon.com/jp/blogs/architecture/choosing-your-vpc-endpoint-strategy-for-amazon-s3/</a></p>
<p><img src="https://storage.googleapis.com/zenn-user-upload/579b8d5a0a11-20231120.png" loading="lazy" class="md-img"></p>
