10

Changes

Todo

1. 2.2 Create a Customer-Managed CMK using AWS CloudFormation - Attach the key to an AWS resource as an example.
2. 3.1 AWS Encryption SDK - Explain the use case for client-side encryption and the implications of managing the keys.
3. 3.2 AWS Secrets Manager - Need to get this example to work with RDS. Currently unable to connect to RDS database. Get the Python example. High Effort
4. 4.1 AWS Certificate Manager and Amazon CloudFront in Console - Document the manual steps for getting ACM and CloudFront to work. Medium Effort
5. 4.2 Launch Encryption in Transit solution with AWS Certificate Manager and Amazon CloudFront - Ensure the examples are working according to latest code.
6. 5.1 Enable Encryption at rest for EBS, RDS, DynamoDB, and S3 in Console - Walk through examples to ensure they still work.
7. 5.2 Encryption at Rest with DynamoDB in CloudFormation - Walk through examples to ensure they still work.
8. 7.2 Provision a CloudTrail log and view the JSON payload - Update the Athena example. Medium Effort
9. 8.1 Manually create encryption prevention, detection and remediation workflow in Console - Modify the S3 remediation example to use Lambda to enable encryption. High Effort
10. 8.2 Deployment pipeline for encryption prevention, detection and remediation workflow - Modify the S3 remediation example to use Lambda to enable encryption. High Effort

Completed

1. Ensure I have all the answers to quiz questions.
2. Summary
3. The Current State of Encryption - Pare down the wording.
4. Ensure all topics of quizzes are caputured in the content.
5. Cleanup - Cleanup this section so that it is more generic.
6. 2.1 Create KMS Keys in Console - Describe more of the "why" behind KMS.