Encryption in transit over external networks: AWS guidance for NYDFS and beyond
Security Blog
This article provides AWS guidance and best practices for encrypting data in transit over external networks to comply with the updated NYDFS encryption requirements. It highlights AWS encryption capabilities and secure connectivity options to protect nonpublic information during transmission.
Specifically, the article covers:
- Overview of the NYDFS Cybersecurity Requirements amendment for encryption in transit
- AWS encryption services and data protection mechanisms for data at rest
- Securing connections to AWS using options like AWS Direct Connect with MACsec, Site-to-Site VPN, secure API endpoints, and client-side encryption
- Encryption mechanisms within the AWS network, including network segmentation and encryption between EC2 instances
- Conclusion emphasizing AWS's comprehensive encryption capabilities to meet regulatory requirements
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
Nov 21
2025
2025
Introducing VPC encryption controls: Enforce encryption in transit within and across VPCs in a Region
Oct 29
2025
2025
Using SSL for in-transit encryption to connect Oracle as a source for AWS DMS
Nov 21
2025
2025
AWS introduces new VPC Encryption Controls and further raises the bar on data encryption
Nov 21
2025
2025
AWS Payments Cryptography announces support for post-quantum cryptography to secure data in transit
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.