AWS Security Blog
Tag: Encryption
How to Address the PCI DSS Requirements for Data Encryption in Transit Using Amazon VPC
The PCI requirements for encryption for data in transit are different for private networks than they are for public networks. When correctly designed, Amazon Virtual Private Cloud (Amazon VPC), a logically isolated portion of the AWS infrastructure that allows you to extend your existing data center network to the cloud, can be considered a private network, […]
Introducing s2n-tls, a New Open Source TLS Implementation
February 22, 2022: s2n has been renamed to s2n-tls. See details. At Amazon Web Services, strong encryption is one of our standard features, and an integral aspect of that is the TLS (previously called SSL) encryption protocol. TLS is used with every AWS API and is also available directly to customers of many AWS services […]
Register for and Attend This June 16 Webinar–Deep Dive: Protecting Your Data with AWS Encryption
Update: The on-demand recording and slides from this webinar are now available. As part of the AWS Webinar Series, AWS will present Deep Dive: Protecting Your Data with AWS Encryption on Tuesday, June 16. This webinar will start at 9:00 A.M. and end at 10:00 A.M. Pacific Time (UTC-7). AWS Principal Product Manager Ken Beer […]
AWS Key Management Service Adds Support for Updating Key Aliases
August 31, 2021: AWS KMS is replacing the term customer master key (CMK) with AWS KMS key and KMS key. The concept has not changed. To prevent breaking changes, AWS KMS is keeping some variations of this term. More info. In November 2014, AWS launched Key Management Service (KMS), a managed service that makes it […]
Amazon Redshift and Amazon RDS Now Support Encryption via AWS Key Management Service in the AWS GovCloud (US) Region
Today, Amazon Redshift and Amazon RDS for MySQL, PostgreSQL, Oracle, and SQL Server DB released support for encryption using AWS Key Management Service (KMS) in the AWS GovCloud (US) region. Using keys under your control, you can now encrypt RDS instances, including MySQL, PostgreSQL, Oracle, and SQL Server DB instance types, and Amazon Redshift clusters in AWS GovCloud […]
AWS Key Management Service Now Available in the AWS GovCloud (US) Region
AWS Key Management Service (KMS) is now available in the AWS GovCloud (US) region. You can now encrypt data in your own applications and within the following AWS services in GovCloud by using keys under your control: Amazon Elastic Block Store volumes Amazon S3 objects using Server Side Encryption (SSE-KMS) and client-side encryption using the […]
Share Custom Encryption Keys More Securely Between Accounts by Using AWS Key Management Service
AWS Key Management Service (KMS) is a managed service that makes it easy for you to create, control, rotate, and use your encryption keys in your applications. KMS allows you to create custom keys that other AWS Identity and Access Management (IAM) users and roles in your AWS account can use. You can also enable […]
In Case You Missed These: Some Recent AWS-Related Security Articles
With the steady stream of updates and enhancements for AWS services, it can be easy to miss important information about features related to security. Here are some recent security-related updates and announcements about AWS services that you might not have heard about yet. Customizable security groups and multiple task instances now available for Amazon EMR […]
Amazon Elastic Transcoder Now Supports AES-128 Encryption for HLS Content
Six weeks ago, we announced that Amazon Elastic Transcoder released support for encryption of media assets using AWS Key Management Service (KMS). Today we are making another improvement to how Elastic Transcoder protects your media assets with encryption. You can now use AES-128 encryption to protect the transcoded files that are delivered to your end […]
AWS CloudHSM Is Now Integrated with Amazon RDS for Oracle and Provides Enhanced Management Tools
November 24, 2021: This blog post announced a feature of AWS CloudHSM Classic which integrated with Amazon RDS for Oracle to provide customers with an easy integration for Transparent Data Encryption (TDE). The AWS CloudHSM team have since released AWS CloudHSM, and this feature is no longer available. For updated options, please see out this […]