Saturday 19 August 2017

Amazon Web Services Kinesis Streams has a Server-Side Encryption

As for how we can see that with the recent development with smart homes, IoT devices, big data, social networks, mobile phones, game consoles, and streaming data scenarios is the new trend. Amazon Kinesis Streams allows you to create a customized application that will record, process, analyze and store the terabytes of data per hour from the thousands of the streaming data sources.

You can build parallel processing system via Amazon Kinesis Streams because it allows the application to process data altogether from the same Amazon Kinesis Stream. For example, you can erase the processed data to Amazon S3 and can perform complicated analytics with Amazon redshirt and build strong and serverless streaming solutions using the Amazon Web Services Lambda.

Amazon Kinesis Stream allows you to stream several use cases for the consumers and now Amazon has made the service effective for protecting the data in motion by adding Server-side encryption (SSE) for Amazon Kinesis Streams. You can improve the security of the data, compliance requirements or meet any regulatory requirements of the organization data streaming needs with the new Amazon Kinesis Streams.

Kinesis Streams are one of the Amazon Web Services in Scope for the Payment Card Industry Data Security Standard (PCI DSS) compliance program. Payment Card Industry Data Security Standard (PCI DSS) compliance program is a recovery information security standard that is conducted by the PCI Security Standards Council that is established by the key financial institutions. 

PCI DSS compliance works with all the entities that process, store and transmit cardholder data or a sensitive authentication data which consist of service providers. Through Amazon Web Services Artifact you can request of the PCI DSS Attestation of the Responsibility and Compliance Summary. With the compliance, the good news is that with Amazon Kinesis Stream it doesn’t just stop there. FedRAMP is now compliant with Kinesis Stream in AWS GovCloud. 

FedRAMP is a Federal Risk and Authorization Management Program and also a US Government-wide program that provides a systematic approach to the security assessment, monitoring and continuous authorization for cloud services and products.

cloud computing

Data which is recorded and the partition key are put into the Kinesis Stream using the PutRecord API or the PutRecord is encrypted using the Amazon Web Services Management Service (KMS) master key. To add the encryption to the incoming data the Amazon Web Services Key Management Service (KMS) master key the Kinesis Streams utilizes the 256-bit Advanced Encryption Standard (AES-256 Algorithm).

With the use of Amazon Kinesis Management Console or the available AWS SDKs, it can allow the Server-side encryption with the Kinesis Stream for the existing streams or new streams. You can also audit or check the stream encryption that validates the encryption status of the particular stream in the Amazon Kinesis Console or can check if the PutRecord or GetRecord transaction is encrypted by using the Amazon Web Service CloudTrail Service.

About is an AWS Advanced Consulting Partner that delivers AWS managed services that cater every business need and aims in simplifying the AWS Cloud Journey. Our Team is the driving force behind with the experience, knowledge, and the skills that they behold in making cloud computing and AWS Cloud a pleasant experience. 

No comments:

Post a Comment

Maximizing Content Delivery Efficiency: Optimizing Performance in AWS CloudFront

  Unleash Blazing-Fast Content Delivery: Your Guide to CloudFront Optimization Introduction: AWS CloudFront stands as a cornerstone of moder...