|
|
|
|
|
|
by hvo
2521 days ago
|
|
|
"You can also do client side encryption, of course, but it's much more difficult to manage because you have to deal with keys in your application." Well,SSE-KMS is not difficult to manage if you have sensitive customers data like Capital One does. I use it all the time. You can pretty much audit the buckets and see what is going on. And if Capital One has used SSE-KMS on the buckets,we might not be talking about this data breach today.Incompetence? Complacency? |
|
|