How secure are Amazon AWS Access keys

0 votes

I want to offer presigned urls to my s3 buckets with an expiry date. The .net sdk nicely generates these urls, but looking at them makes me worry a little:

https://s3.amazonaws.com/upload_youtipit/myfile?AWSAccessKeyId=**MYACCESSKEY**&Expires=1317924047&response-content-disposition=attachment;filename=feedback.jpg&response-content-type=image/jpeg&Signature=podKJSrNeFel6%2B0aOneb342H5GA%3D

Why does it need to put my (public) AWSAccessKey in the Url? Shouldn't this be kept a bit more confidential? I know its not the secret, but I still don't feel comfortable exposing it in public.

How likely is it that, somebody who has my public key, can guess/brute force my private key?

Sep 20, 2018 in AWS by Archana
 • 4,170 points 533 views

1 answer to this question.

0 votes

The Access Key ID is not a secret and does not need protecting.

In fact, you can give expiring URLs to random strangers if you want them to access an S3 object. They can see the access key in that URL, but can't do anything with it that you have not authorized.

reference: http://docs.amazonwebservices.com/AWSSecurityCredentials/1.0/AboutAWSCredentials.html#AccessKeys

answered Sep 20, 2018 by datageek
 • 2,540 points

Related Questions In AWS

+2 votes
1 answer

How to Use Amazon AWS Credentials to Access/Query Tables in AWS RDS Instance through Mobile App

You should make your backend functions to ...READ MORE

answered Aug 28, 2018 in AWS by Priyaj
 • 58,020 points 1,257 views
+1 vote
4 answers

How do I cache my images which are stored in Amazon S3?

when caching ec2 instance these can be ...READ MORE

answered Oct 23, 2018 in AWS by Nabarupa
 9,125 views
0 votes
1 answer

How can I import Amazon AWS resume instance?

Go to the EC2 instance list and ...READ MORE

answered Jul 11, 2018 in AWS by Priyaj
 • 58,020 points 811 views
0 votes
1 answer

How to access an AWS Lambda environment variable from Python

Try this code hope it will work ...READ MORE

answered Jul 20, 2018 in AWS by Priyaj
 • 58,020 points 5,325 views
+1 vote
5 answers

Using IAM user account how can I login to AWS Console?

Hi, Here for the above mentioned IAM user ...READ MORE

answered Jan 27, 2020 in AWS by vivek
 • 530 points 7,608 views
0 votes
1 answer

Unable to connect to putty and winscp

Check if the FTP ports are enabled ...READ MORE

answered Jul 20, 2018 in Cloud Computing by Gopalan
 • 1,360 points 2,187 views
+2 votes
1 answer

How to connect to EC2 file directory using SFTP and Filezilla?

To connect to EC2 instance using Filezilla, ...READ MORE

answered Jul 27, 2018 in Cloud Computing by Gopalan
 • 1,360 points 25,933 views
0 votes
1 answer

Not able to stream PDF, using AWS gateway/Lambda setup

I had a similar problem with trying ...READ MORE

answered Jul 31, 2018 in AWS by Priyaj
 • 58,020 points 3,436 views
0 votes
1 answer

How to link AWS Lambda function to Amazon CloudWatch ?

In order to create Log Group and ...READ MORE

answered Jul 20, 2018 in AWS by datageek
 • 2,540 points 1,550 views
0 votes
1 answer

How is Amazon ECS different from AWS Elastic Beanstalk?

AWS Elastic Beanstalk is an application management ...READ MORE

answered Sep 20, 2018 in AWS by datageek
 • 2,540 points 1,198 views
webinar REGISTER FOR FREE WEBINAR X
REGISTER NOW
webinar_success Thank you for registering Join Edureka Meetup community for 100+ Free Webinars each month JOIN MEETUP GROUP
"PMP®","PMI®", "PMI-ACP®" and "PMBOK®" are registered marks of the Project Management Institute, Inc. MongoDB®, Mongo and the leaf logo are the registered trademarks of MongoDB, Inc.