Difference between revisions of "AWS S3 encryption"

From wikieduonline
Jump to navigation Jump to search
 
(7 intermediate revisions by the same user not shown)
Line 1: Line 1:
 +
[[AWS S3 encryption|Encryption]] (2017) is supported in AWS S3 (default [[Advanced Encryption Standard]] (AES 256bit) since January 5, 2023 all new objects are encrypted by default <ref>https://docs.aws.amazon.com/AmazonS3/latest/userguide/default-encryption-faq.html</ref>.
  
[[AWS S3 encryption|Encryption]] (2017) is supported in AWS S3 (default [[Advanced Encryption Standard]] (AES) 256bit)
 
 
*In [[transit]] ([[SSL]]/[[TLS]])
 
*In [[transit]] ([[SSL]]/[[TLS]])
 
*At [[rest]]:
 
*At [[rest]]:
Line 7: Line 7:
 
** [[AWS Key Management Service]], Managed Keys (SSE-KMS)
 
** [[AWS Key Management Service]], Managed Keys (SSE-KMS)
 
** Server Side Encryption with Customer Provided Keys (SSE-C)
 
** Server Side Encryption with Customer Provided Keys (SSE-C)
* Client Side Encryption (user encypts data on their local machine and then upload to AWS S3)
+
* [[Client Side Encryption]]: user encrypts data and use AWS S3 to store it
 
 
  
 
== Related ==
 
== Related ==
* [[aws s3api get-bucket-encryption]]
+
* <code>[[aws s3api get-bucket-encryption]]</code> command
 
+
* [[Terraform S3 resources]]: <code>[[aws_s3_bucket_server_side_encryption_configuration]]</code>
 +
* [[AWS S3 encryption]]
  
 
== See also ==
 
== See also ==

Latest revision as of 13:05, 12 June 2024

Advertising: