I am trying to move potentially sensitive data to an S3 bucket from where I can put it into an Amazon Redshift cluster to perform analytics. I am transferring data from our current MySQL tables to CSVs, uploading them to S3, and using COPY to put the data into Redshift. I have attempted to use client side encryption using boto3 in Python, however it has not been successful. I read that S3 uses TLS encryption in transit when uploading files to S3. Can anyone confirm this? Could I rely on that and not have to worry about using client side encryption?
The AWS API is a REST service that supports SSL/TLS connections. All the official AWS SDKs and CLI tools connect to the AWS API via SSL/TLS by default.