How do you secure an S3 bucket from unauthorized public access, and what are the different layers of security you can apply for Apexon?