Amazon rolls out server-side S3 encryption service

Home
Topics
Cloud Security Management and Cloud Operations Security
Cloud Data Storage, Encryption and Data Protection Best Practices
Amazon rolls out server-side S3 encryption service

News

Amazon rolls out server-side S3 encryption service

SearchCloudSecurity.com Staff

Amazon Web Services on Tuesday announced a server-side encryption service for its Simple Storage Service (S3).

With Server Side Encryption, Amazon handles the encryption and decryption of data stored in S3. With the service, users can encrypt data by adding an additional request header when writing the object to S3, Amazon said. When users download the objects, decryption occurs automatically.

Amazon touts its S3 encryption service as freeing users from the work of managing encryption keys. The alternative is for users to encrypt data on their side and upload the encrypted data to Amazon S3.

Enterprises should stick with client-side encryption, in most cases, according to Rich Mogull, founder of Securosis LLC., an independent security consulting firm.

“The only thing that server side like this helps with is concerns over physical loss of the drives the data is stored on,” he said in an email. “Amazon already has very good policies around protecting those drives, so I don't see the advantages for server side.”

The Amazon S3 Server Side Encryption uses the 256-bit Advanced Encryption Standard.

Requires Free Membership to View

Login

By submitting your registration information to SearchCloudSecurity.com you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchCloudSecurity.com is governed by our Terms of Use. You may contact us at webmaster@TechTarget.com.

Related Topics: Cloud Data Storage, Encryption and Data Protection Best Practices, Cloud Computing Infrastructure as a Service (IaaS) Security, VIEW ALL TOPICS

Dig Deeper

People who read this also read...
Related tags
- encryption

Related glossary terms

Terms for Whatis.com - the technology online dictionary
- information-centric security

Show me more

Join the conversationComment

Share

Comments

Results

Contribute to the conversation

All fields are required. Comments will appear at the bottom of the article.

More from Related TechTarget Sites

Security
Security Channel
Security UK
Cloud computing
Server Virtualization
VMware

Security
- Using social engineering testing to foster anti-social engineering training
  
  Worried your users could easily be pwned? Learn about improving social engineering testing to foster anti-social engineering training.
- BeyondTrust acquires eEye Digital Security for vulnerability management
  
  Analysts say eEye’s vulnerability and configuration management capabilities are a good fit with BeyondTrust’s privilege management and AD integration.
- How to detect and mitigate Poison Ivy RAT malware-style attacks
  
  Learn how to prevent malcode like the Poison Ivy RAT malware, sophisticated malware that has been crafted especially for an enterprise take-down.
Security Channel
- Biometric authentication methods: Comparing smartphone biometrics
  
  Biometric authentication helps ensure only authorized smartphone users can access a network. David Jacobs weighs the pros and cons of three methods.
- F5 Vault program embraces incentives for F5 firewall, security sales
  
  The Vault partner program uses incentives to increase visibility for F5 firewalls and its architecture bundle.
- Using DMARC to improve DKIM and SPF email antispam effectiveness
  
  DMARC aids the DKIM and SPF protocols that help keep spam out and let legitimate emails in. David Jacobs explains how.
Security UK
- ICO fines Welsh health board £70,000 for patient record loss
  
  For the first time, the ICO fines an NHS organisation for sending patient data to the wrong person.
- With mobile payments, security teams must move quickly
  
  As employees make payments on their mobile devices, the security team must act quickly to ensure corporate assets remain secure.
- SOCA takes its website offline in DDoS response
  
  Just days after SOCA shut down carder sites, the agency was the victim of a DDoS attack, leading SOCA to takes its website offline.
Cloud computing
- Azure’s identity crisis and other cloud computing sound bites
  
  Microsoft Azure wants to be called Loretta. No, that’s not true. Or is it? Find out that answer and other news overheard in the cloud this past week.
- Is PaaS just another four-letter word in cloud computing?
  
  PaaS is a quick fix for companies looking to deploy new apps, but established firms with legacy apps may consider it a dirty word.
- PaaS selection starts at the programming language
  
  The PaaS market is growing without a single leader or approach. Picking a model should involve more than just saying, ‘Eeney, meeney, miney, moe.’
Server Virtualization
- VMware pros glean vSphere roadmap from CTO in VMUG videos
  
  VMware customers hope that vSphere virtualization products will soon have more automation and integration.
- New virtual data center design decisions with Hyper-V 3.0
  
  IT pros are presented with new virtual data center design options, thanks to new feature in Hyper-V 3.0. So which architecture will you choose?
- How promiscuous mode affects virtual network security
  
  Enabling promiscuous mode could spell doom for your virtual network security, especially if inexperienced IT pros are at the helm. So take caution.
VMware
- Replacing self-signed SSL certificates to improve ESXi security
  
  VMware’s default, self-signed SSL certificates ensure data encryption. By importing certificates from trusted, third-parties, however, you can improve ESXi security even further.
- Using vCloud Director 1.5 in the real world: Ask the expert
  
  Although many organizations have been slow to adopt vCloud Director 1.5, one expert predicts a coming increase and offers advice for administrators who are looking to get started.
- VMware SSD updates: Making a solid case for local ESXi storage
  
  Solid-state storage is beginning to make a splash in data centers, and there are a handful of VMware SSD use cases for that can improve ESXi host performance.

All Rights Reserved, Copyright 2011 - 2012, TechTarget