StandardS3EncryptionService manages an encryption strategy and applies that strategy to various S3 operations.
Server Side Encryption property set. To use
this service with processors so configured, first create a service instance, set the Encryption Strategy to Server-side S3,
disable the Server Side Encryption processor setting, and finally, associate the processor with the service.
None - no encryption is configured or applied.Server-side S3 - encryption and decryption is managed by S3; no keys are required.Server-side KMS - encryption and decryption are performed by S3 using the configured KMS key.Server-side Customer Key - encryption and decryption are performed by S3 using the supplied customer key.Client-side KMS - like the Server-side KMS strategy, with the encryption and decryption performed by the client.Client-side Customer Key - like the Server-side Customer Key strategy, with the encryption and decryption performed by the client.When configured for either the Server-side or Client-side KMS strategies, this field should contain the KMS Key ID.
When configured for either the Server-side or Client-side Customer Key strategies, this field should contain the key material, and that material must be base64 encoded.
All other encryption strategies ignore this field.