SSE C SSE-C when you want to manage your own [[encryption key]]s AWS S3 does not store the [[encryption key]] you provide [[HTTPS]] must be used [[Encryption key]] must be provided in [[HTTP headers]], for every [[HTTP request]] made