"Do you want client-side encryption for your software but don’t know where to start? In this hands-on workshop, we cover the basics of client-side encryption, perform encrypt and decrypt operations using AWS Key Management Service (KMS) and the AWS Encryption SDK, and discuss security and performance considerations when implementing client-side encryption in your software. This workshop covers the basic challenges of this domain; a best practice for protecting data end-to-end with client-side encryption; KMS-style services and their uses, including AWS KMS; the open-source, open-format AWS Encryption SDK; and considerations for advanced integrations, such as performance tradeoffs and high-availability strategies.