En utilisant AWS re:Post, vous acceptez les AWS re:Post Conditions d’utilisation
AWS re:Postre:Post

Changing Encryption key from Aws managed to Customer Managed

0

Hi friends,

My RDS databases are encrypted using Default AWS-managed keys, and everything works as expected. However, I'm confronted with the idea of using Customer managed keys which looks like additional work. I do not think it is needed at this moment, are there any security issues for remaining using default AWS encryption keys ? what strategy will be best for you? our environments, for the moment, do not have a workload that deserves this configuration.

I'm not very sure about rebuilding my entire environment to implement a customer-managed key. Any ideas ?

Best Regards,

Sujets
Migration et modernisationAnalytiqueBase de données
Balises
Amazon Relational Database ServiceAmazon RDS on VMWareBase de donnéesChiffrement
Langue
English
Luis
demandé il y a 2 ans305 vues
1 réponse
0
Réponse acceptée

Please take a look at this AWS Premium Support article - https://aws.amazon.com/premiumsupport/knowledge-center/s3-object-encryption-keys/

Although this article talks about S3, but technically it should be no different anywhere else you use KMS for encryption of data at rest.

profile pictureAWS
EXPERT
Indranil Banerjee AWS
répondu il y a 2 ans
profile picture
EXPERT
Sedat Salman
vérifié il y a 10 mois
profile pictureAWS
EXPERT
AWS-User-Nitin
vérifié il y a 2 ans

Vous n'êtes pas connecté. Se connecter pour publier une réponse.

Une bonne réponse répond clairement à la question, contient des commentaires constructifs et encourage le développement professionnel de la personne qui pose la question.

Instructions pour répondre aux questions

Contenus pertinents