From the course: AWS Administration: Security Operations
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Key Management Service - Amazon Web Services (AWS) Tutorial
From the course: AWS Administration: Security Operations
Key Management Service
- [Instructor] The odds are if you store data at AWS you're going to want to encrypt that data, which means you're probably going to use the Key Management Service. KMS allows you to manage the encryption process. KMS is integrated with a lot of storage services at AWS and this allows you to manage and easily encrypt your data records that are stored at AWS. KMS uses customer master keys. Each customer has a customer master key and this allows you to encrypt and decrypt the data keys that are used by each customer to encrypt and decrypt your data records. Unique data keys are used for each encryption decryption request. The keys that are being used are going to be stored with very, very large durability. The level of durability is defined as 11 nines. What this means is that let's say you had 100 keys stored. You would lose one of those keys every 10 million years. 11 nines durability is indicating that the storage is actually…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
Data protection in transit and at rest6m 20s
-
(Locked)
Data encryption options for storage services5m 21s
-
(Locked)
S3 Encryption4m 7s
-
(Locked)
Key Management Service4m 48s
-
(Locked)
Explore Cloud HSM4m 41s
-
(Locked)
Analyze breaches with Amazon Macie6m 19s
-
(Locked)
Certificate Manager4m 56s
-
(Locked)
Demo: Amazon Macie2m 57s
-
-
-