Cloud Security Alliance

AWS Ends SSE-C Encryption, and a Ransomware Vector

SSE-C stands (well, stood) for “Server Side Encryption- Customer-provided keys”. It allowed you to provide an encryption key ...
InfoWorld

Amazon eases Web encryption with AWS Certificate Manager

A new service provides free, automatically upgraded SSL/TLS certificates for sites supported by Amazon's load balancing and CDN systems Adding encryption to a website has always been more complex than ...
InfoQ

AWS Launches Amazon S3 Dual-Layer Server-Side Encryption with Keys Stored in AWS KMS

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
InfoQ

Implementing Application Level Encryption at Scale: Insights from Atlassian’s Use of AWS and Cryptor

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
CSOonline

How to automate Let’s Encrypt certificate authority in AWS using PowerShell

You can still automate Let's Encrypt even if your system requires a DNS challenge. Using these PowerShell scripts and Amazon Web Services' DNS service Route 53 will do the trick. If you have been in ...
CSOonline

Baffle to offer tenant-level data encryption to AWS users

Baffle has integrated homegrown key management capability with AWS server-side encryption, allowing SaaS applications to isolate and encrypt data at the customer level. SaaS applications running on ...
Bleeping Computer

Ransomware abuses Amazon AWS feature to encrypt S3 buckets

A new ransomware campaign encrypts Amazon S3 buckets using AWS's Server-Side Encryption with Customer Provided Keys (SSE-C) known only to the threat actor, demanding ransoms to receive the decryption ...