To access material, start machines and answer questions login.
Access controls decide who can request your data. Encryption at provides extra protection in case credentials are compromised, permissions drift, or storage is exposed.
By default, encrypts all objects with SSE-, even if the bucket has no explicit bucket-level encryption. However, when dealing with compliance, you can use a customer-managed key, a separate decryption authorization, or a -backed key usage audit.
In this room, you will see how to add an extra layer of security for data at .
Learning Objectives
- Understand the difference between SSE-, , and
- How to identify what encryption type is applied to an bucket
- Enable default on a bucket
- Enforce operations
Prerequisites
- Being able to set up your environment (First Steps Into room)
- Basic commands ( Fundamentals room)
- Have a basic understanding of the service (Introduction to Cloud Storage room)
Encryption is everywhere.
Ready to learn Cyber Security?
The The Plain Bucket room is only available for Premium or Max subscribers. Signup now to access more than 500 free rooms and learn cyber security through a fun, interactive learning environment.
Already have an account? Log in
