Reputation: 1990
How does AWS RDS MYSQL SSL work?
so I setup an SSL connection for my RDS MySQL instance in accordance with these instructions: http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/CHAP_MySQL.html#MySQL.Concepts.SSLSupport. It seems to work, but I am confused as to how it makes it any more secure. Those instructions offer a single public key that can be used to create an SSL connection for all RDS instances. Unless I am missing something, there is no unique aspect of the key. Maybe I have a fundamental misunderstanding of SSL, but I can't wrap my head around how having a single public key for all RDS instances is secure. Any insights would be greatly appreciated.
Upvotes: 1
Views: 366
Answers (1)
Reputation: 1281
The SSL is only for encrypting the traffic between the client and the server (db in this case), its not the authentication used to connect to the database, you still need to provide a user and pass. The reason you can distribute a public key to multiple users is because the nature of it dictates that it cannot be decrypted by anything but the private key. If you think about it, this is exactly how a secure connection to an https site works, the connection to the amazon db is working the same way.
Upvotes: 4
Related Questions
- How to connect to Amazon RDS via SSL?
- AWS RDS (MySQL) Secure Connection
- How ssl works in psql?
- Connect AWS EC2 instance to RDS MySQL through SSL using PHP
- How do you setup SSL to connect to an RDS MySQL Instance
- MySQL, Remote connection and security
- PHP to MySQL Amazon RDS with SSL, confirm SSL
- Accessing rds MySql db with SSL 443 instead of 3306
- How to access a MySQL database hosted on Amazon RDS with SSL from MySQL .NET Connector
- How to connect to an Amazon MySQL RDS instance via PHP over SSL