AEM S3 connector support for SSE-C

lkarr · 2022-12-15T17:45:25+00:00

Request for Feature Enhancement (RFE) Summary: AEM S3 connector support for SSE-C Use-case: For protection of customer data, encryption in transit and at rest is required. Some data stored in S3, requires the use of customer managed, customer provided keys. This provides an extra level of security through separation of duties, as one team/role can manage the keys, while another team/role can use the provided keys for encryption of the data. Currently, AEM S3 connection supports only two of the valid encryption options for S3 server-side encryption. SSE-C encryption is needed to allow for that separation of duties. Current/Experienced Behavior: AEM S3 connector currently supports SSE-S3 and SSE-KMS, but not SSE-C (customer managed, customer provided keys) Improved/Expected Behavior: AEM S3 connector would support all 3 encryption options Environment Details (AEM version/service pack, any other specifics if applicable): AEM 6.5 SP 13+ Customer-name/Organization name: US Government Customer Screenshot (if applicable): Code package (if applicable):

Forum|Forum|3 years ago
December 15, 2022
1 reply
425 views

Request for Feature Enhancement (RFE) Summary:	AEM S3 connector support for SSE-C
Use-case:	For protection of customer data, encryption in transit and at rest is required. Some data stored in S3, requires the use of customer managed, customer provided keys. This provides an extra level of security through separation of duties, as one team/role can manage the keys, while another team/role can use the provided keys for encryption of the data. Currently, AEM S3 connection supports only two of the valid encryption options for S3 server-side encryption. SSE-C encryption is needed to allow for that separation of duties.
Current/Experienced Behavior:	AEM S3 connector currently supports SSE-S3 and SSE-KMS, but not SSE-C (customer managed, customer provided keys)
Improved/Expected Behavior:	AEM S3 connector would support all 3 encryption options
Environment Details (AEM version/service pack, any other specifics if applicable):	AEM 6.5 SP 13+
Customer-name/Organization name:	US Government Customer
Screenshot (if applicable):
Code package (if applicable):

kautuk_sahni

Community Manager

@lkarr

Thanks for proposing this idea

This has been reported to the engineering under the internal reference CQ-4351177. The product team will triage this request to verify feasibility based on the prioritization model. This post will be updated according to the Jira request status.

Kautuk Sahni

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded