Server-side encryption (SSE)

Simply put

Server-side encryption (SSE) is a method of encrypting data at rest on

a server or storage system. SSE ensures that data is encrypted before

it's stored on the server, thereby protecting it from unauthorized

access.


There are typically three variants of SSE:

  • SSE-S3 (Server-Side Encryption with Amazon S3): This is offered by AWS for objects stored in Amazon S3 (Simple Storage Service). With SSE-S3, Amazon S3 manages the encryption keys, providing an easy-to-use solution for encrypting data stored in S3 buckets.

  • SSE-KMS (Server-Side Encryption with AWS Key Management Service): With SSE-KMS, the keys used for encryption are managed through AWS Key Management Service (KMS). This provides additional security and control over the encryption keys, allowing for more granular access management and audit capabilities.

  • SSE-C (Server-Side Encryption with Customer-Provided Keys): SSE-C allows customers to provide their own encryption keys, which are used to encrypt and decrypt data stored in the cloud. With SSE-C, the cloud storage provider handles the encryption and decryption process, but the keys are managed by the customer, providing greater control over data security.


See

https://www.learnaws.org/2022/10/09/aws-s3-server-side-encryption/

相关推荐
小小工匠1 个月前
Arch - 架构安全性_传输(Transport Security)
架构·security·传输安全·transport
粥粥粥少女的拧发条鸟2 个月前
【论文分享精炼版】 sNPU: Trusted Execution Environments on Integrated NPUs
security·tee·npu
dingdingfish2 个月前
Oracle 网络安全产品安全认证检索
oracle·database·security·backup·zdlra
粥粥粥少女的拧发条鸟2 个月前
【论文分享】Graviton: Trusted Execution Environments on GPUs 2018’OSDI
security·gpu
.wsy.3 个月前
day09 工作日报表
security
Monster✺◟(∗❛ัᴗ❛ั∗)◞✺4 个月前
开源安全态势感知平台Security Onion
linux·运维·安全·security·态势感知·securityonion
dingdingfish4 个月前
Oracle透明数据加密:数据泵文件导出
oracle·database·security·tde·datapump
-风中叮铃-5 个月前
《软件定义安全》之四:什么是软件定义安全
网络·安全·security·sdn·软件定义安全
-风中叮铃-5 个月前
Fortigate防火墙二层接口的几种实现方式
security·firewall·network·fortigate