> Permission Checks – The S3 Console now displays a prominent indicator next to each S3 bucket that is publicly accessible.<p>> Default Encryption – You can now mandate that all objects in a bucket must be stored in encrypted form without having to construct a bucket policy that rejects objects that are not encrypted.<p>Given how many companies lost data through misconfigured S3 buckets, and how easy it is to do, these two seem like a good idea.