bgaborg commented on a change in pull request #1752: HADOOP-16732. S3Guard to support encrypted DynamoDB table URL: https://github.com/apache/hadoop/pull/1752#discussion_r364812882
########## File path: hadoop-tools/hadoop-aws/src/site/markdown/tools/hadoop-aws/s3guard.md ########## @@ -423,6 +423,39 @@ This is the default, as configured in the default configuration options. </property> ``` +### 8. If creating a table: Enable server side encryption (SSE) + +Encryption at rest can help you protect sensitive data in your DynamoDB table. +When creating a new table, you can set server side encryption on the table +using the default AWS owned customer master key (CMK), AWS managed CMK, or +customer managed CMK. S3Guard code accessing the table is all the same whether +SSE is enabled or not. For more details on DynamoDB table server side +encryption, see the AWS page on [Encryption at Rest: How It Works](https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/encryption.howitworks.html). + +This is the default configuration options, as configured in `core-default.xml`. Review comment: Nit: "These are the default configuration options" - use These instead of This ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected] With regards, Apache Git Services --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
