RDS Encryption questions


A customer sent me the questions below:

As part of out vendor approval with a major bank, we detailed that we encrypt the DB using RDS encryptions. They asked us the following questions, and we couldn't find a specific answer in the AWS documentation. Can you please help?

  1. What are the Enumeration protocol and supported versions
  2. What is the Certificate key size (i.e: RSA 2048) ----- Adir: AES-256
  3. Which Cipher suites are supported?

Do we have this information to provide him?

asked 4 years ago44 views
1 Answer
Accepted Answer

The AWS RDS platform uses the same encryption at rest technology that EBS utilizes to encrypt full volumes. We utilize AES-256 encryption, detailed here: https://docs.aws.amazon.com/kms/latest/developerguide/services-rds.html

With regards specifically to Postgres RDS, most of your questions related to encryption in transit are here: https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/CHAP_PostgreSQL.html#PostgreSQL.Concepts.General.SSL

answered 4 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions