Textract Encryption in transit

is the sync analyzedocuemnt api from** python SDK **encrypted by TLS by default? this will be enough for HIPAA compliance as far as encryption in transmit is concerned? if not whats the best/easiest way to ensure HIPAA compliance while transmitting?(BAA already signed) Please give references in your answer. Any other guidance in for this subject is appreciated. Thank you

Topics

Machine Learning & AI AWS Well-Architected Framework AWS Compliance

Tags

Amazon Textract Security Encryption BAA AWS Compliance

Language

English

Navi

asked 13 days ago179 views

1 Answer

Newest
Most votes
Most comments

Accepted Answer

Hi,

All AWS service endpoints that you can reach with the DSK from the various languages incl Python support encryption: All AWS service endpoints support TLS to create a secure HTTPS connection to make API requests. from https://docs.aws.amazon.com/whitepapers/latest/logical-separation/encrypting-data-at-rest-and--in-transit.html
Yes, Textract is HIPAA compliant since 2019: see https://aws.amazon.com/about-aws/whats-new/2019/10/amazon-textract-is-now-a-hipaa-eligible-service/ Also have a look at Textract compliance section in this WP: https://docs.aws.amazon.com/pdfs/whitepapers/latest/architecting-hipaa-security-and-compliance-on-aws/architecting-hipaa-security-and-compliance-on-aws.pdf#architecting-hipaa-security-and-compliance-on-aws

You may also find this article useful: https://medium.com/@christopheradamson253/building-hipaa-compliant-applications-on-aws-2eaa94d23350

Best,

Didier

EXPERT

Didier_Durand

answered 13 days ago

EXPERT

Pandurangaswamy

reviewed 13 days ago

Navi
13 days ago
Thank you @Didier for your help! So does the word support in "All AWS service endpoints support TLS to create a secure HTTPS connection to make API requests" mean its set by default or should we set something for it?
Didier_Durand EXPERT
13 days ago
Hi, in-transit encryption is set by default on all AWS service endpoints. Look at "Encryption in transit" on https://docs.aws.amazon.com/cli/v1/userguide/data-protection.html

"By default, all data transmitted from the client computer running the AWS CLI and AWS service endpoints is encrypted by sending everything through a HTTPS/TLS connection."
Brettski-AWS EXPERT
13 days ago
One way to confirm whether the encryption is happening by default would be to run tcpdump or similar on your computer while communicating with Textract.
Navi
12 days ago
Thank you both
Didier_Durand EXPERT
12 days ago
Hi Navi, glad that you liked the answer. Thanks for accepting it! Didier

Relevant content

Do EKS encrypts secrets by default?
Jatin Mehrotra
asked 2 years ago
Encryption by default (Storage Gateway - Volume)
trackstar2000
asked 4 years ago
Is AWS X-Ray traffic encrypted in transit?
Accepted Answer
rePost-User-8472021
asked a year ago
TLS Encryption for Data in Transit in MSK Serverless
hima
asked 9 months ago
How can I verify that authenticated encryption with data encryption is used for AWS KMS API calls?
AWS OFFICIALUpdated 4 months ago
When I activate default encryption on my Amazon S3 bucket, do I need to update my bucket policy so that objects in the bucket are encrypted?
AWS OFFICIALUpdated 2 years ago
I want my S3 bucket to store only objects encrypted by my KMS key. How can I do that?
AWS OFFICIALUpdated 2 years ago
Which CloudHSM certificates are used for the client-server end-to-end encrypted connection?
AWS OFFICIALUpdated 3 months ago
AWS B2B Data Interchange is now HIPAA eligible and supports X12 version 5010 HIPAA transactions
EXPERT
AWS Transfer Family
published 4 months ago
AWS Transfer Family supports self-signed TLS certificates and 3DES encryption for sending AS2 messages
EXPERT
AWS Transfer Family
published 3 months ago