What are the valid methodologies for encrypting data on S3?

What are the valid methodologies for encrypting data on S3?

What are the valid methodologies for encrypting data on S3?

A.
Server Side Encryption (SSE)-S3, SSE-C, SSE-KMS or a client library such as Amazon S3 Encryption
Client.

B.
Server Side Encryption (SSE)-S3, SSE-A, SSE-KMS or a client library such as Amazon S3 Encryption
Client.

C.
Server Side Encryption (SSE)-S3, SSE-C, SSE-SSL or a client library such as Amazon S3 Encryption
Client.

D.
Server Side Encryption (SSE)-S3, SSE-C, SSE-SSL or a server library such as Amazon S3 Encryption
Client.

Show Hint

Leave a Reply 4

Your email address will not be published. Required fields are marked *

joy

joy

A: http://docs.aws.amazon.com/AmazonS3/latest/dev/UsingEncryption.html

Reply

Mahendrakunar Ranvir

Mahendrakunar Ranvir

Given Link only encryption data in transist. so not applicable to question

Data protection refers to protecting data while in-transit (as it travels to and from Amazon S3) and at rest (while it is stored on disks in Amazon S3 data centers). You can protect data in transit by using SSL or by using client-side encryption. You have the following options of protecting data at rest in Amazon S3.

Reply

Mahendrakunar Ranvir

Mahendrakunar Ranvir

If you need extra security you can use the Server Side Encryption (SSE) option or
the Server Side Encryption with Customer-Provide Keys (SSE-C) option to encrypt data stored-at-rest.
Amazon S3 provides the encryption technology for both SSE and SSE-C. Alternatively, you can use your own encryption libraries to encrypt data before storing it in Amazon S3.

Reply

Mahendrakunar Ranvir

Mahendrakunar Ranvir

Q: What options do I have for encrypting data stored on Amazon S3?
You can choose to encrypt data using SSE-S3, SSE-C, SSE-KMS, or a client library such as the Amazon S3
Encryption Client. All four enable you to store sensitive data encrypted at rest in Amazon S3.

Reply