{"slug":"iam-aws-route53","cloud":"aws","service":"route53","title":"AWS Route 53 (IAM)","description":"Amazon Route 53 is a scalable and highly available Domain Name System (DNS) web service for routing end users to internet applications.","category":"networking","common_permissions":["route53:ListHostedZones","route53:GetHostedZone","route53:ListResourceRecordSets","route53:ListHealthChecks","route53:GetHealthCheck","route53:ListTrafficPolicies","route53:GetTrafficPolicy","route53:ListTagsForResources"],"least_privilege_example":"{\n  \"Version\": \"2012-10-17\",\n  \"Statement\": [\n    {\n      \"Effect\": \"Allow\",\n      \"Action\": [\n        \"route53:ListHostedZones\",\n        \"route53:GetHostedZone\",\n        \"route53:ListResourceRecordSets\",\n        \"route53:ListHealthChecks\",\n        \"route53:GetHealthCheck\",\n        \"route53:ListTrafficPolicies\",\n        \"route53:GetTrafficPolicy\",\n        \"route53:ListTagsForResources\"\n      ],\n      \"Resource\": \"*\"\n    }\n  ]\n}","warnings":["Avoid route53:* — grants full control including hosted zone deletion and record modification","Avoid route53:DeleteHostedZone unless needed — can break DNS resolution for entire domains"],"docs":"https://servicereference.us-east-1.amazonaws.com/v1/route53/route53.json","tags":["iam","aws"],"last_verified":"2026-06-14T00:00:00.000Z","next_check":"2026-12-11T00:00:00.000Z","created_at":"2026-06-14T04:48:55.212Z","updated_at":"2026-06-14T04:48:55.212Z"}