How to Encrypt Your Existing AWS S3 Objects

Amazon’s S3 service comes with some pretty handy server-side encryption features. In fact, the S3 web app provides a single control to automatically encrypt all new objects in a bucket with SSE-S3 or SSE-KMS. Unfortunately, these controls only affect new objects. If your bucket already contains 10,000 unencrypted objects, then turning on automatic encryption does […]

Using an OpenPGP Smartcard with GnuPG

This is part of a series on GNU Privacy Guard: Getting Started with GNU Privacy Guard Generating More Secure GPG Keys: Rationale Generating More Secure GPG Keys: A Step-by-Step Guide Using an OpenPGP Smartcard with GnuPG (this post) Recap Picking up where we left off, we’re on a relatively secure (air-gapped) system with a keyring […]

Linux Encryption in the Cloud using LUKS on Linode

Thinking through some security concerns recently, I found myself wondering if it was possible to achieve full system Linux encryption in the cloud — running GNU/Linux off of an encrypted root partition (using LUKS). I thought that it should have been possible — it was achieved easily running with a local virtualization platform (VirtualBox, VMWare […]