Posted On: Nov 3, 2022
Amazon Simple Notification Service (Amazon SNS) recently launched the public preview of message data protection. Amazon SNS message data protection is a new set of capabilities that leverage pattern matching, machine learning models, and content policies to help security and engineering teams facilitate real-time data protection in their applications that use Amazon SNS to exchange high volumes of data. Now, with the general availability launch, you can de-identify data within a message payload in real-time via data redaction, or masking.
Amazon SNS is a fully managed, reliable, and highly available messaging service that enables you to connect distributed systems or send messages directly to users via SMS, mobile push, and email. With message data protection for Amazon SNS, you can discover and protect certain types of personally identifiable information (PII) and protected health information (PHI) data that is in motion between your applications. This can help support your compliance objectives, for example, with regulations such as the Health Insurance Portability and Accountability Act (HIPAA), General Data Privacy Regulation (GDPR), Payment Card Industry Data Security Standard (PCI-DSS), and Federal Risk and Authorization Management Program (FedRAMP). Message data protection enables topic owners to define and apply data protection policies that scan messages in real-time for sensitive data to provide detailed audit reports of findings, block message delivery, and de-identify data within a payload via redaction or masking.
Amazon SNS message data protection is available in the following AWS Regions: US East (Ohio), US East (N. Virginia), US West (N. California), US West (Oregon), Africa (Cape Town), Asia Pacific (Hong Kong), Asia Pacific (Jakarta), Asia Pacific (Mumbai), Asia Pacific (Osaka), Asia Pacific (Seoul), Asia Pacific (Singapore), Asia Pacific (Sydney), Asia Pacific (Tokyo), Canada (Central), Europe (Frankfurt), Europe (Ireland), Europe (London), Europe (Milan), Europe (Paris), Europe (Stockholm), Middle East (Bahrain), and South America (São Paulo).
Start discovering and protecting sensitive data in real-time using the AWS Software Development Kit (SDK), AWS Command Line Interface (CLI), AWS CloudFormation, or AWS Management Console.
To learn more about Amazon SNS message data protection, see the following:
- Introducing message data protection for Amazon SNS blog post
- Message data protection in the Amazon SNS Developer Guide
- PutDataProtectionPolicy and GetDataProtectionPolicy in the Amazon SNS API Reference
- Amazon SNS service quotas in the AWS General Reference