Al usar AWS re:Post, aceptas las AWS re:Post Términos de uso
AWS re:Postre:Post

S3 Default Encryption, and individual object encryption settings

0

Greetings,

I need some verification on S3 encryption. We have multiple buckets that have default encryption enabled, however when inspecting the individual objects within these buckets, they say server side encryption is disabled, and they have to be manually toggled.

Does this effectively mean the default encryption is doing nothing, or is the encryption setting on the individual objects an extra layer of encryption?

The end goal is to have all of our objects encrypted at rest. But it's confusing as to whether or not that's happening.

Thanks!

Temas
AlmacenamientoSeguridad, identidad y cumplimiento
Etiquetas
Amazon Simple Storage ServiceSeguridad, identidad y cumplimientoCriptografía
Idioma
English
profile picture
kyager
preguntada hace un año394 visualizaciones
2 Respuestas
1
Respuesta aceptada

Hi Kyager,

Default bucket encryption doesn't change the encryption settings of existing object, only newly updated ones.

Could be that the objects you are looking at were existing before the setting was applied. https://aws.amazon.com/blogs/storage/encrypting-existing-amazon-s3-objects-with-the-aws-cli/

profile picture
EXPERTO
Antonio_Lagrotteria
respondido hace un año
profile pictureAWS
EXPERTO
Tushar_J
revisado hace un año
1

Were these objects uploaded before enabling encryption? Existing objects are not encrypted.

https://aws.amazon.com/blogs/storage/encrypting-existing-amazon-s3-objects-with-the-aws-cli/

profile pictureAWS
ABitnar
respondido hace un año

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Pautas para responder preguntas

Contenido relevante