# Encryption Overview

## Encryption in transit (SSL/TLS)

* This **protects your data if communications are intercepted** while data moves between your site and the cloud provider or between two services.<br>
* This protection is achieved by **encrypting the data before transmission**; **authenticating the endpoints**; and **decrypting and verifying the data on arrival**.

## Server side encryption

* Server-side encryption is the **encryption of data at its destination** by the application or service that receives it.

## Client side encryption

* Client-side encryption is the **encryption of data on the sender's side**, before it is transmitted to AWS.