This policy describes at a high level the measures we have used to reduce the risk of this.
Higher security approaches exist. We have chosen this approach based on a balance of security, convenience and cost;
- We use an S3 bucket with static content to serve end users
- A Lambda function through an API Gateway is used to handle the contact form
- The AWS administrative accounts are protected by passwords and two-factor authentication