O'Reilly logo

Cloud Security Automation by Prashant Priyam

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Using SSL to encrypt database connections

AWS RDS also enables you to encrypt database connections using SSL. Here, all the database flavors, such as MySQL, MariaDB, SQL Server, Oracle, and Postgres, have their own way of implementing the SSL.

AWS RDS creates an SSL certificate and installs the certificate on the database instance while provisioning the instance. These certificates are signed by a certificate authority (CA). The SSL certificate includes the DB instance endpoint URL as the common name (CN) for the SSL certificate.

Now, to implement these keys, we use the following script:

mysql -h <specify you mysqlRDS endpoint url> --ssl-ca=https://s3.amazonaws.com/rds-downloads/rds-combined-ca-bundle.pem ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required