I just begin Amazon S3 for my project. It has nice Server Side Encryption function.
I have used Customer Provide Key to upload/download with my own key.
It's fine. But sometime i need to get raw data (encrypted data) by request without algorithm and key.
But it response error.
So i want to firgure out a way to solve my problem.
Thanks for your help !
Why? If AWS exposed raw data, it could be used to break encryption. SSE is not provided to secure data externally to AWS. Exposing raw data puts your customer's keys and data at risk of being compromised by brute force decryption techniques.
Server-side encryption is about data encryption at rest—that is, Amazon S3 encrypts your data at the object level as it writes it to disks in its data centers and decrypts it for you when you access it.
http://docs.aws.amazon.com/AmazonS3/latest/dev/serv-side-encryption.html
Caution
If you lose the encryption key any GET request for an object without its encryption key will fail, and you lose the object.
http://docs.aws.amazon.com/AmazonS3/latest/dev/ServerSideEncryptionCustomerKeys.html