O'Reilly logo

Learning AWS - Second Edition by Amit Shah, Aurobindo Sarkar

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Securing data at rest

Another key aspect of security is to secure the data stored in physical storage devices such as hard disks, USB drives, SAN devices, and so on. In the AWS cloud world, these would be AWS data storage services such as S3, RDS, Redshift, DynamoDB, and so on. To secure data at rest, symmetric encryption is used; that is, the data is encrypted with an encryption key, and the data is secure as long as the encryption key is secure, so all effort is directed at keeping the encryption key secure.

AWS provides the Key Management Service (KMS) to resolve issues related to the management and storage of encryption keys, as described in the previous section. This service is also used to secure data at rest. The encryption of data ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required