Articles → AWS → Key Management Service In AWS Console
Key Management Service In AWS Console
Purpose
Symmetric And Asymmetric Keys
AWS Managed And Customer Managed Keys
AWS Managed Keys Vs AWS Owned Keys
- AWS controls the lifecycle and key policies of AWS managed keys.
- AWS managed keys are resources in customer AWS accounts.
- Customers can view CloudTrail events and can access policies and for AWS managed keys.
- All requests that are made against these keys are logged as CloudTrail events.
- Keys are exclusively used by AWS for internal encryption operations across different AWS services.
- Customers do not have visibility into key policies of the AWS owned keys.
- Requests to these keys are not logged in the CloudTrail events.
How To Create A Key?
Click to Enlarge
Click to Enlarge
Click to Enlarge
Click to Enlarge
Click to Enlarge
Click to Enlarge
Click to Enlarge
Click to Enlarge