Over a million developers have joined DZone.

Amazon Web Services Offers Server Side Encryption for Amazon S3

DZone's Guide to

Amazon Web Services Offers Server Side Encryption for Amazon S3

· Cloud Zone ·
Free Resource

Learn how to migrate and modernize stateless applications and run them in a Kubernetes cluster.

Amazon Web Services now offers Server Side Encryption (SSE) for Amazon S3, enabling the ability to encrypt data stored in Amazon S3, by adding an additional request header when writing the object to Amazon S3, with decryption occurring automatically when data is retrieved.

Amazon S3 Server Side Encryption employs multi-factor encryption, with each object encrypted with a unique key, and as an additional safeguard, this key is itself encrypted with a regularly rotated master key. Amazon S3 Server Side Encryption uses one of the strongest block ciphers available — 256-bit Advanced Encryption Standard (AES-256).

You can start using Amazon S3 Server Side Encryption in the AWS Management Console:

  1. Under the Amazon S3 tab, use the upload dialog to add files to be uploaded.
  2. In the “Set Details” section of the upload dialog, set the “Use Server Side Encryption” checkbox property.
  3. Start Upload. The files will be encrypted and stored in Amazon S3.

If you prefer to manage your own encryption keys, you can also make use of the client libraries for encryption provided by Amazon. To learn more, visit the Amazon S3 Encryption client page.


From http://www.kinlane.com/2011/10/amazon-web-services-offers-server-side-encryption-for-amazon-s3/

Join us in exploring application and infrastructure changes required for running scalable, observable, and portable apps on Kubernetes.


Opinions expressed by DZone contributors are their own.

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.urlSource.name }}