Data encryption in Amazon FinSpace
Amazon FinSpace uses the following data encryption features
Encryption at rest
To encrypt data at rest, Amazon FinSpace uses a customer-owned key from the AWS Key Management Service (AWS KMS). When you create a FinSpace environment, you can specify the KMS key that you want to use to encrypt all of the service data and metadata in your environment.
Encryption in transit
Amazon FinSpace uses TLS 1.2 to encrypt data in transit.