Our Blog

Amazon RDS for SQL Server enables encrypting native backups using server-side encryption with AWS KMS keys (SSE-KMS)

Published
October 22, 2025
https://aws.amazon.com/about-aws/whats-new/2025/10/amazon-rds-sql-server-kms-native-backup/

Amazon RDS for SQL Server

Amazon RDS for SQL Server now supports encrypting native backups in Amazon S3 using server-side encryption with AWS KMS keys (SSE-KMS). When customers create database backup files (.bak files) in their Amazon S3 buckets, the backup files are automatically encrypted using server-side encryption with Amazon S3-managed keys (SSE-S3). Now, customers have the option to additionally encrypt their native backup files in Amazon S3 using their own AWS KMS key for additional protection.

What to do

  • Update KMS key policies to provide access to the RDS backup service.
  • Specify the parameter @enable_bucket_default_encryption in the native backup stored procedure.
  • Refer to the Amazon RDS for SQL Server User Guide for detailed instructions.

This feature is available in all AWS Regions where Amazon RDS for SQL Server is available.




If you need further guidance on AWS, our experts are available at AWS@westloop.io. You may also reach us by submitting the Contact Us form.

Follow our blog

Get the latest insights and advice on AWS services from our experts.

By clicking Sign Up you're confirming that you agree with our Terms and Conditions.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Related posts

Check out other insights from the team at West Loop Strategy.

View all
https://aws.amazon.com/about-aws/whats-new/2025/10/amazon-ec2-c8g-instances-additional-regions/

Amazon EC2 C8g instances now available in additional regions

Starting today, Amazon Elastic Compute Cloud (Amazon EC2) C8g instances are available in AWS Europe (Milan), and AWS Asia Pacific (Hong Kong, Osaka, Melbourne) regions
Read more
https://aws.amazon.com/about-aws/whats-new/2025/10/aws-nitro-enclaves-available-in-all-regions/

AWS announces Nitro Enclaves are now available in all AWS Regions

AWS Nitro Enclaves is an Amazon EC2 capability that enables customers to create isolated compute environments (enclaves) to further protect and securely process highly sensitive data within their EC2 instances
Read more
https://aws.amazon.com/about-aws/whats-new/2025/10/aws-pcs-dynamic-cluster/

AWS Parallel Computing Service now supports dynamic cluster updates

AWS Parallel Computing Service (AWS PCS) now enables you to modify and update key Slurm workload manager settings without rebuilding your cluster
Read more
View all