What is KMS?

  • S3 may use the KMS to enable S3 to offer and perform server-side encryption using SSE-KMS
  • KMS contains the keys to decrypt your private data
  • Administrators at AWS don’t have access to your keys within KMS
  • All administrative actions require dual authentication by two Amazon administrators
  • It’s our responsibility to administer our own encryption keys
  • The KMS service is for encryption at rest
  • To encrypt data while in transit you would need to use a different method, such as SSL
  • Encryption is done by the server
  • Backend servers that encrypt the data as it arrives transparent to the end-user
  • The overhead of performing the encryption and managing the keys is handled by the server
  • Encryption is done by the end-user
  • Requires the user to interact with the data to make the data encrypted
  • The overhead of the encryption process is on the client
Nadtakan Futhoem — Sr. Software Engineer

--

--

--

Founder of Nadtakan.com & Serverless Cloud developer. Follow me on Twitter https://twitter.com/nadtakanfuthoem

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

{UPDATE} Stickman Jailbreak Vertical Hack Free Resources Generator

{UPDATE} Basketball Trivia - Quiz game for Basketball fans and lovers Hack Free Resources Generator

Ransomware, data breach, cyberattack: What do they have to do with your personal information, and…

{UPDATE} 找茬大作战:经典单机找茬游戏 Hack Free Resources Generator

From the Digital Services Act Package to the Artificial Intelligence Act passing by the Data…

How Can A VPN Help Secure Your Business?

To Lock or Not to Lock the Screen

Social Engineering — Today’s Number 1 Option for Unauthorised Access

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Nadtakan Futhoem

Nadtakan Futhoem

Founder of Nadtakan.com & Serverless Cloud developer. Follow me on Twitter https://twitter.com/nadtakanfuthoem

More from Medium

AWS Transfer Family For File Transfers

AWS Transfer Family with AWS Managed MS AD

Custom Lenses for the AWS Well-Architected Tool

Amazon DynamoDB : TTL Best Practices

Let’s Encrypt Certificates with AWS