Which encryption method should I choose?
Written by
Updated at March 31, 2025
The table below compares encryption using Yandex Cloud (CLI, API, and SDK) and other libraries (AWS Encryption SDK, Google Tink). Take a look at the table and choose the most suitable method.
| Feature | API | CLI | SDK | Google Tink | AWS Encryption SDK |
|---|---|---|---|---|---|
| Easy authentication | |||||
| Unlimited size of plaintext for encryption | |||||
| Stream encryption |
We recommend encrypting large amounts of data through the AWS Encryption SDK and Google Tink because they use envelope encryption.
You can also implement the envelope encryption algorithm yourself using the API or SDK Yandex Cloud based on cryptographic methods provided by Yandex Key Management Service.
Warning
In this case, you should consider all implementation features of envelope encryption.