data encryption-at-rest in RDS vs S3

Whose responsibility is to encrypt data-at-rest in RDS and S3?

Topics

Storage Migration & Modernization Analytics Database Security, Identity, & Compliance

Tags

Amazon Simple Storage Service Amazon Relational Database Service Shared Responsibility Model

Language

English

Backer

asked 2 years ago642 views

1 Answer

Newest
Most votes
Most comments

AWS follows the shared responsibility model. In short AWS responsibility “Security of the Cloud” and Customer responsibility “Security in the Cloud”. In the cases where you store data in RDS and S3, the customer takes full responsibility for encryption. However both RDS and S3 provides you nesasary tools to encrypt the data at rest.

You can find more about shared responsibility principal at here - https://aws.amazon.com/compliance/shared-responsibility-model/ How to enable S3 data encryption can be found here - https://docs.aws.amazon.com/AmazonS3/latest/userguide/UsingEncryption.html How to enable RDS encryption can be found here : https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Overview.Encryption.html

EXPERT

Shamika-AWS

answered 2 years ago

Relevant content

How to create Mysql rds instance from a encrypted snapshot stored in s3 bucket.
rePost-User-2738569
asked 3 months ago
Efficiently Archiving Transactional Data in RDS MSSQL to S3
Accepted Answer
Olive
asked a month ago
encrypted db snapshot restore from S3 not working AWS RDS(mysql) console in an S3 bucket.
vsiripurapu
asked 2 years ago
Cannot access encrypted files from RDS in S3 bucket
Accepted Answer
AWS-User-1526643
asked 2 years ago
How can I resolve the error "Unknown dataset URI pattern: dataset" when exporting Amazon RDS data to Amazon S3 in Parquet format using Sqoop?
AWS OFFICIALUpdated 2 years ago
How do I restore an encrypted backup file or encrypted Microsoft Azure backup in RDS for SQL Server from an on-premises environment?
AWS OFFICIALUpdated 2 years ago
How can I copy my Amazon EBS snapshot data to Amazon S3 and create EBS volumes for custom data in S3?
AWS OFFICIALUpdated 10 months ago
Why is Kinesis Data Firehose creating so many small files in S3?
AWS OFFICIALUpdated 2 years ago
Optimizing Reserved Instance Purchases for RDS when Instance Scheduling is in use
EXPERT
jamesf
published 7 months ago
[Announcement] Amazon RDS Extended Support opt-in behavior is changing. Upgrade your Amazon RDS for PostgreSQL 11 database instances before March 31, 2024 to avoid potential increase in charges.
EXPERT
Aslan
published 4 months ago