Amazon Kinesis Data Analytics for SQL Applications Developer Guide
SQL Developer Guide

The AWS Documentation website is getting a new look!
Try it now and let us know what you think. Switch to the new look >>

You can return to the original look by selecting English in the language selector above.

Data Protection in Amazon Kinesis Data Analytics for SQL Applications

You can protect your data using tools that are provided by AWS. Kinesis Data Analytics can work with services that support encrypting data, including Kinesis Data Streams, Kinesis Data Firehose, and Amazon S3.

Data Encryption in Kinesis Data Analytics

Encryption at Rest

Note the following about encrypting data at rest with Kinesis Data Analytics:

Encryption In Transit

Kinesis Data Analytics encrypts all data in transit. Encryption in transit is enabled for all Kinesis Data Analytics applications and cannot be disabled.

Kinesis Data Analytics encrypts data in transit in the following scenarios:

  • Data in transit from Kinesis Data Streams to Kinesis Data Analytics.

  • Data in transit between internal components within Kinesis Data Analytics.

  • Data in transit between Kinesis Data Analytics and Kinesis Data Firehose.

Key Management

Data encryption in Kinesis Data Analytics uses service-managed keys. Customer-managed keys are not supported.

On this page: