Would you agree that simpler systems tend to be more secure?
At Storadera, we believe that clarity reduces risk. That’s why we’re introducing our Simplified S3 Permission System – designed to make S3 security both easier and safer for real-world business use cases.
Why simplify?
AWS S3 IAM exposes 67+ individual actions that can be combined into policies. While powerful, the result is a huge amount of complexity for something with “Simple” right in the name (S3 stands for Simple Storage Service).
Most business workloads do not require that kind of granularity. In practice, teams often struggle to identify which exact S3 permissions their application needs (e.g. Veeam, backup tools, archivers, or internal apps). The result? Permissions get over-granted “just to make it work”, and security suffers.
Our approach: Less complexity, more clarity
Storadera’s new simplified permission model is built around Roles with a small number of clear and intuitive capabilities.
Role capabilities
- Admin buckets
- Create buckets
- Delete buckets
Bucket access
- Full access
- Custom access with the following options:
- List
- Read
- Write
- Delete
That’s it — no long policy boilerplate, no guessing, no over-granting “just in case.”
Security benefits
- Easier to reason about
- Harder to misconfigure
- Aligned with real business use cases (particularly for backup, archive, and data protection workloads)
- Reduces accidental overexposure
For advanced users
If you still need to understand how these map to underlying S3 actions, you can find the exact technical mapping here.