Unanswered Questions tagged with AWS Key Management Service
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
Approach for Client-Side Encryption with AWS KMS, Separate Keys for Each Column, and Key Rotationlg...
I'm working on implementing client-side encryption in my application, using AWS KMS for key generation. I aim to have a separate key for each column that needs encryption, and the encryption process...
0
answers
0
votes
58
views
asked 2 days agolg...
We have been running with DMS obtaining access to Target Endpoints (RDS SQL Server) via Secrets Manager in all environments for over a year without issue. We have a character exclusion mechanism on...
0
answers
0
votes
57
views
asked 3 days agolg...
I am attempting to import a 64 byte key for HMAC_SHA_256 KMS, from the cli, and I get the error
An error occurred (InvalidCiphertextException) when calling the ImportKeyMaterial operation:
I have...
0
answers
0
votes
87
views
asked 6 months agolg...
Hello,
Here is the challenge I'm working on. I've established a CloudFormation Template that configures a source S3 bucket replicating objects to a destination S3 bucket in another region. Both...
0
answers
0
votes
147
views
asked 7 months agolg...
How exactly does the kms:CallerAccount Condition work in a key policy? I've set up an SNS topic that is encrypted, and is triggered by a CloudWatch alarm. A CloudWatch alarm will fail publishing to...
0
answers
0
votes
83
views
asked 7 months agolg...
We currently use TDE to enctrypt our databases (on premise) and use the native Extensible Key Management to manage our keys. We have recently been given an EOL notification for our current KMS...
0
answers
0
votes
152
views
asked 8 months agolg...
I'm exploring KMS for implementing client-side encryption within our Dynamo DB table. While going through the documentation, it's apparent that the MostRecentProvider (MRP) stands out as the favored...
0
answers
0
votes
140
views
asked 8 months agolg...
Billing dashboard shows:
![Enter image description here](/media/postImages/original/IMSV3K7RarQ5O0sSv_wZXVkg)
Account has no customer-managed keys in this region, only one AWS-managed key for...
0
answers
0
votes
164
views
When creating a new data set in QuickSight, I receive an error:
```
[Simba][AthenaJDBC](100071) An error has been thrown from the AWS Athena client. Access denied when writing to location: s3://<data...
0
answers
0
votes
171
views
asked a year agolg...
Hi,
I'm trying to use aws_s3.table_import_from_s3 to read data stored in a separate account, but the GetObject call is failing. If I reproduce the issue from the CLI, I get the following error:
The...
0
answers
0
votes
99
views
asked a year agolg...
I currently have a DynamoDB global table set up with encryption at rest configured using an AWS managed key (not owned by Amazon, so KMS charges apply).
My service that hits the DynamoDB table is...
0
answers
0
votes
196
views
asked a year agolg...
In trying to implement "encrypting and decrypting strings" under Android Studio, I find that the call to:
KmsMasterKeyProvider keyProvider =...
0
answers
0
votes
50
views
asked a year agolg...