Questions tagged with AWS Key Management Service
AWS Key Management Service (KMS) makes it easy for you to create and manage cryptographic keys and control their use across a wide range of AWS services and in your applications.
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
334 results
Hello,
In EBS documentation, it is explained [how EBS encryption works](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSEncryption.html). It explains data is encrypted with a data key, which is...
The default behavior of 'aws_s3.query_export_to_s3' is problematic for cross account s3 object share.
If RDS is in acountA, 'aws_s3.query_export_to_s3' will encrypt data with accountA's 'aws/s3' key....
Hi,
In my Amazon S3, I remember setting up the Access Key/ Secret Access Key. I'm trying to look for it in the console but I can't find it.
I see the Buckets but where is the Access Key/ Secret...
Amazon now disabled the ability to remove encryption to S3 buckets as I understand - ALL items uploaded to s3 buckets are now encrypted. Thus, serving them publicly in the simplest of use-cases -...
while doing project work i found that the access key is wrong while running code build, is there a way to disable the auto change in access key
If I disable, block, or delete keys in the external key store, how long will my data still be accessible in the cloud?
The only info I found was: "Caching of these keys can vary from 5 mins to 24 hrs,...
I read this page https://docs.aws.amazon.com/eks/latest/userguide/enable-kms.html, it says that
> If you enable secrets encryption for an existing cluster and the KMS key that you use is ever...
We will enable Kubernetes secret encryption in Production environment. However, our dev environment already set Kubernetes encryption to enabled. So we cannot test if there's downtime when enabling...
We have a encrypted dynamodb table and recently noticed latency on ddb calls, looking further it was actually kms calls that was taking time. So we looked into caching solutions and found that...
Is it possible to save encrypted data from a Nitro Enclave? Here is my scenario:
After performing some computation, I want my service in the enclave to encrypt the data and store it somewhere...
Hello, my question is just whether or not I could use the kms:ViaService condition key in a IAM policy with FIPS endpoints specified? I need to use FIPS endpoints for compliance reasons and I can't...
I can't delete it in anyway in KMS C.P
the key is the following and it's an AWS Managed Key (not customer):
"Alias: aws/lightsail"
"Status: Enabled"
"Description: Default key that protects my...