Over a million developers have joined DZone.

Amazon Web Services Offers Server Side Encryption for Amazon S3

DZone's Guide to

Amazon Web Services Offers Server Side Encryption for Amazon S3

· Cloud Zone ·
Free Resource

Discover a centralized approach to monitor your virtual infrastructure, on-premise IT environment, and cloud infrastructure – all on a single platform.

Amazon Web Services now offers Server Side Encryption (SSE) for Amazon S3, enabling the ability to encrypt data stored in Amazon S3, by adding an additional request header when writing the object to Amazon S3, with decryption occurring automatically when data is retrieved.

Amazon S3 Server Side Encryption employs multi-factor encryption, with each object encrypted with a unique key, and as an additional safeguard, this key is itself encrypted with a regularly rotated master key. Amazon S3 Server Side Encryption uses one of the strongest block ciphers available — 256-bit Advanced Encryption Standard (AES-256).

You can start using Amazon S3 Server Side Encryption in the AWS Management Console:

  1. Under the Amazon S3 tab, use the upload dialog to add files to be uploaded.
  2. In the “Set Details” section of the upload dialog, set the “Use Server Side Encryption” checkbox property.
  3. Start Upload. The files will be encrypted and stored in Amazon S3.

If you prefer to manage your own encryption keys, you can also make use of the client libraries for encryption provided by Amazon. To learn more, visit the Amazon S3 Encryption client page.


From http://www.kinlane.com/2011/10/amazon-web-services-offers-server-side-encryption-for-amazon-s3/

Learn how to auto-discover your containers and monitor their performance, capture Docker host and container metrics to allocate host resources, and provision containers.


Opinions expressed by DZone contributors are their own.

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.urlSource.name }}