Rule: S3 Bucket Versioning Should Be Enabled

Ensure that S3 bucket versioning is enabled to maintain data integrity and protect against accidental deletions.

Rule	S3 bucket versioning should be enabled
Framework	NIST Cybersecurity Framework (CSF) v1.1
Severity	✔ High

Rule Description:

S3 bucket versioning should be enabled to align with the security controls of the NIST Cybersecurity Framework (CSF) v1. Versioning helps in preserving multiple versions of an object within an S3 bucket, providing backup and recovery capabilities, as well as protection against accidental deletion or modification of data.

Enabling versioning ensures that all modifications made to objects stored within the S3 bucket are tracked and preserved, allowing for easy restoration to a previous state if necessary.

Troubleshooting Steps:

If versioning is not enabled for an S3 bucket, follow these steps to troubleshoot and enable versioning:

Step 1: Verify Bucket Properties

1.
Log in to the AWS Management Console and navigate to the S3 service.

2.
Select the bucket you want to enable versioning for.

3.
Click on the "Properties" tab.

Step 2: Check Versioning Status

1.
Under the "Advanced settings" section, locate the "Versioning" option.

2.
If it is not already enabled, click on the "Edit" button.

Step 3: Enable Versioning

1.
Select the "Enable versioning" option.

2.
Review the implications of enabling versioning on the bucket, such as potential increase in storage costs.

3.
Click on the "Save changes" button.

Step 4: Verify Versioning Status

1.
Return to the bucket properties and confirm that versioning is now enabled. You should see a message indicating that versioning is enabled for the bucket.

Necessary Codes:

No code is necessary for enabling versioning for an S3 bucket. This process can be achieved entirely through the AWS Management Console.

Remediation Steps:

To enable versioning for an S3 bucket, follow these step-by-step guide:

1.
Log in to the AWS Management Console and navigate to the S3 service.

2.
Select the bucket for which you want to enable versioning.

3.
Click on the "Properties" tab.

4.
Under the "Advanced settings" section, locate the "Versioning" option.

5.
If versioning is not already enabled, click on the "Edit" button.

6.
Select the "Enable versioning" option.

7.
Review the implications of enabling versioning on the bucket in terms of potential increase in storage costs.

8.
Click on the "Save changes" button.

9.
Confirm that versioning is now enabled by returning to the bucket properties page and verifying the status message.

Note: Enabling versioning does not retroactively apply it to any existing objects in the bucket. It will only track modifications made to objects after versioning is enabled.

Rule: S3 Bucket Versioning Should Be Enabled

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Step 1: Verify Bucket Properties

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Step 2: Check Versioning Status

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Step 3: Enable Versioning

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Step 4: Verify Versioning Status

Is your System Free of Underlying Vulnerabilities? Find Out Now

Step 1: Verify Bucket Properties

Step 2: Check Versioning Status

Step 3: Enable Versioning

Step 4: Verify Versioning Status

Is your System Free of Underlying Vulnerabilities?
Find Out Now