Thanks for clarifying that. Could I protect them with a bucket policy that restricts access to my S3 files and only allows requests from mydomain.com? I was able to get this sort of functionality working in JW Player a few months ago except for Firefox which doesn’t (for some reason) include referrer header information in requests from the Flash file for JW Player.

This might be a little contrived but do you think this type of setup would work; does Flowplayer send that information? Also, are there any plans on including support for private S3 video embeds?