IAM policy can be used to give readonly access to a single S3 bucket in Amazon cloud for a particular user.