Questions tagged with AWS Key Management Service

AWS Key Management Service (KMS) makes it easy for you to create and manage cryptographic keys and control their use across a wide range of AWS services and in your applications.

Content language: English

Select up to 5 tags to filter
Sort by most recent

Browse through the questions and answers listed below or filter and sort to narrow down your results.

334 results
Hello, In EBS documentation, it is explained [how EBS encryption works](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSEncryption.html). It explains data is encrypted with a data key, which is...
1
answers
0
votes
288
views
cyrilsp
asked 2 years ago
The default behavior of 'aws_s3.query_export_to_s3' is problematic for cross account s3 object share. If RDS is in acountA, 'aws_s3.query_export_to_s3' will encrypt data with accountA's 'aws/s3' key....
1
answers
0
votes
2177
views
asked 2 years ago
Hi, In my Amazon S3, I remember setting up the Access Key/ Secret Access Key. I'm trying to look for it in the console but I can't find it. I see the Buckets but where is the Access Key/ Secret...
2
answers
0
votes
5275
views
asked 2 years ago
Amazon now disabled the ability to remove encryption to S3 buckets as I understand - ALL items uploaded to s3 buckets are now encrypted. Thus, serving them publicly in the simplest of use-cases -...
1
answers
0
votes
412
views
aantich
asked 2 years ago
while doing project work i found that the access key is wrong while running code build, is there a way to disable the auto change in access key
1
answers
0
votes
258
views
asked 2 years ago
If I disable, block, or delete keys in the external key store, how long will my data still be accessible in the cloud? The only info I found was: "Caching of these keys can vary from 5 mins to 24 hrs,...
1
answers
0
votes
286
views
ibkl
asked 2 years ago
I read this page https://docs.aws.amazon.com/eks/latest/userguide/enable-kms.html, it says that > If you enable secrets encryption for an existing cluster and the KMS key that you use is ever...
1
answers
0
votes
445
views
asked 2 years ago
We will enable Kubernetes secret encryption in Production environment. However, our dev environment already set Kubernetes encryption to enabled. So we cannot test if there's downtime when enabling...
1
answers
0
votes
446
views
asked 2 years ago
We have a encrypted dynamodb table and recently noticed latency on ddb calls, looking further it was actually kms calls that was taking time. So we looked into caching solutions and found that...
1
answers
0
votes
381
views
asked 2 years ago
Is it possible to save encrypted data from a Nitro Enclave? Here is my scenario: After performing some computation, I want my service in the enclave to encrypt the data and store it somewhere...
3
answers
0
votes
932
views
asked 2 years ago
Hello, my question is just whether or not I could use the kms:ViaService condition key in a IAM policy with FIPS endpoints specified? I need to use FIPS endpoints for compliance reasons and I can't...
3
answers
0
votes
687
views
asked 2 years ago
I can't delete it in anyway in KMS C.P the key is the following and it's an AWS Managed Key (not customer): "Alias: aws/lightsail" "Status: Enabled" "Description: Default key that protects my...
1
answers
0
votes
374
views
Chris
asked 2 years ago