Amazon rolls out server-side S3 encryption service Staff

Amazon Web Services on Tuesday announced a server-side encryption service for its Simple Storage Service (S3).

With Server Side Encryption, Amazon handles the encryption and

    Requires Free Membership to View

decryption of data stored in S3. With the service, users can encrypt data by adding an additional request header when writing the object to S3, Amazon said. When users download the objects, decryption occurs automatically.

Amazon touts its S3 encryption service as freeing users from the work of managing encryption keys. The alternative is for users to encrypt data on their side and upload the encrypted data to Amazon S3.

Enterprises should stick with client-side encryption, in most cases, according to Rich Mogull, founder of Securosis LLC., an independent security consulting firm.

“The only thing that server side like this helps with is concerns over physical loss of the drives the data is stored on,” he said in an email. “Amazon already has very good policies around protecting those drives, so I don't see the advantages for server side.”

The Amazon S3 Server Side Encryption uses the 256-bit Advanced Encryption Standard.


There are Comments. Add yours.

TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: