Amazon S3 now supports Server Side Encryption with Customer-provided Keys (SSE-C)

Posted on: Jun 12, 2014

With SSE-C, Amazon S3 encrypts your data, on your behalf, using keys that you provide. Your key is discarded immediately after your request, and your key is never stored by S3. Since Amazon S3 performs the encryption for you, you get the benefits of using your encryption keys without the cost of writing or executing your own encryption code.

In addition to REST API updates, the AWS SDKs for Java, Ruby, PHP, and. NET provide the necessary functionality to leverage SSE-C. You can learn how to use SSE with Customer-provided Keys today by visiting the Using SSE with Customer-provided Keys topic in the Amazon S3 Developer Guide.