Home
Topics
Cloud Security Management and Cloud Operations Security
Cloud Data Storage, Encryption and Data Protection Best Practices
Amazon rolls out server-side S3 encryption service

News

Amazon rolls out server-side S3 encryption service

SearchCloudSecurity.com Staff

Amazon Web Services on Tuesday announced a server-side encryption service for its Simple Storage Service (S3).

With Server Side Encryption, Amazon handles the encryption and

Requires Free Membership to View

Login

By submitting you agree to receive email communications from
TechTarget and its partners. Privacy Policy Terms of Use.

decryption of data stored in S3. With the service, users can encrypt data by adding an additional request header when writing the object to S3, Amazon said. When users download the objects, decryption occurs automatically.

Amazon touts its S3 encryption service as freeing users from the work of managing encryption keys. The alternative is for users to encrypt data on their side and upload the encrypted data to Amazon S3.

Enterprises should stick with client-side encryption, in most cases, according to Rich Mogull, founder of Securosis LLC., an independent security consulting firm.

“The only thing that server side like this helps with is concerns over physical loss of the drives the data is stored on,” he said in an email. “Amazon already has very good policies around protecting those drives, so I don't see the advantages for server side.”

The Amazon S3 Server Side Encryption uses the 256-bit Advanced Encryption Standard.

Related Topics: Cloud Data Storage, Encryption and Data Protection Best Practices, Cloud Computing Infrastructure as a Service (IaaS) Security, VIEW ALL TOPICS

More News and Tutorials

Articles

Related glossary terms

Terms for Whatis.com - the technology online dictionary
- information-centric security

Join the conversationComment

Share

Comments

Results

Contribute to the conversation

All fields are required. Comments will appear at the bottom of the article.

More from Related TechTarget Sites

Security
Security Channel
Security UK
Cloud computing
Server Virtualization
VMware

Security
- Case study: CDI launches aviation company DLP program on short runway
  
  Technology services company CDI-Aerospace used a Verdasys DLP solution to manage third-party risk for a major aviation client.
- IT certification guide: Vendor-specific information security certifications
  
  Experts Ed Tittel and Mary Lemons provide a 2013 overview of vendor-specific information security certifications available.
- Introduction: Vendor-neutral security certifications for your career path
  
  Ed Tittel and Mary Lemons offer the definitive primer for vendor-neutral security certifications in 2013.
Security Channel
- Websense Partner Program
  
  Learn about bandwidth management vendor Websense's partner program in this standardized checklist.
- Tripwire, Inc. Partner Program
  
  Learn more about configuration control software vendor Tripwire, Inc.'s partner program in this standardized checklist.
- Configuring privilege levels
  
  This section of the chapter excerpt focuses on supporting multiple administrative levels of router configuration.
Security UK
- Infosecurity 2012: IPv6 challenges to network security
  
  In this video interview, Ian Kilpatrick of Wick Hill discusses the IPv6 challenges that small and medium businesses are just beginning to address.
- Apache DDoS vulnerability requires immediate update to avoid threat
  
  Apache has released an updated version of its Web server to address a DDoS vulnerability, for which exploit tools have been found in the wild.
- Learn how to utilize a free spam-filtering service for your SMB
  
  Learn how a Web-based free spam-filtering service can secure email and prevent spam from attacking your enterprise.
Cloud computing
- Interest in private clouds grows as market matures
  
  Growing interest in private clouds reflects an improved understanding of cloud computing among IT pros, experts say.
- Building a cloud ecosystem with open source software
  
  The open source community fosters innovation in the name of cloud. OW2's Cédric Thomas talks of 'coopitition' and the open source cloud revolution.
- Sequestration stymies federal government cloud ambitions
  
  The federal government is under mandates to consolidate data centers and deliver IT as a Service, but sequestration makes this easier said than done.
Server Virtualization
- How to achieve optimal resource allocation and why that matters
  
  Optimal resource allocation is a tricky tightrope act for even experienced IT pros, but you can ease the process by asking yourself a few questions.
- Virtualization widens schism between server and networking teams
  
  Virtual networking has revived tensions between server and networking teams within data centers, but it's a dynamic both sides must embrace.
- Strike a common-sense balance when deciding what to automate
  
  Consider the many factors that determine the potential return on investment when deciding when and what to automate.
VMware
- VMware vCloud Director evaluation guide: Five use cases to consider
  
  VMware vCloud Director brings cloud computing features to vSphere shops, but it's a significant investment that warrants serious evaluation first.
- Tough Metro vMotion requirements make for a dream infrastructure
  
  VMware's Metro vMotion requirements for networking, storage and vCenter keep live VM migration between data centers just a dream for most IT shops.
- IT, meet security: Why vSphere security is all about collaboration
  
  Strong vSphere security comes from collaboration and the right server virtualization security tools and processes.

All Rights Reserved,Copyright 2011 - 2013, TechTarget