Unanswered Questions tagged with AWS Key Management Service
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
I am attempting to import a 64 byte key for HMAC_SHA_256 KMS, from the cli, and I get the error
An error occurred (InvalidCiphertextException) when calling the ImportKeyMaterial operation:
I have...
0
answers
0
votes
72
views
asked 5 months agolg...
Hello,
Here is the challenge I'm working on. I've established a CloudFormation Template that configures a source S3 bucket replicating objects to a destination S3 bucket in another region. Both...
0
answers
0
votes
137
views
asked 5 months agolg...
How exactly does the kms:CallerAccount Condition work in a key policy? I've set up an SNS topic that is encrypted, and is triggered by a CloudWatch alarm. A CloudWatch alarm will fail publishing to...
0
answers
0
votes
75
views
asked 6 months agolg...
We currently use TDE to enctrypt our databases (on premise) and use the native Extensible Key Management to manage our keys. We have recently been given an EOL notification for our current KMS...
0
answers
0
votes
128
views
asked 7 months agolg...
I'm exploring KMS for implementing client-side encryption within our Dynamo DB table. While going through the documentation, it's apparent that the MostRecentProvider (MRP) stands out as the favored...
0
answers
0
votes
133
views
asked 7 months agolg...
Billing dashboard shows:
![Enter image description here](/media/postImages/original/IMSV3K7RarQ5O0sSv_wZXVkg)
Account has no customer-managed keys in this region, only one AWS-managed key for...
0
answers
0
votes
154
views
When creating a new data set in QuickSight, I receive an error:
```
[Simba][AthenaJDBC](100071) An error has been thrown from the AWS Athena client. Access denied when writing to location: s3://<data...
0
answers
0
votes
163
views
asked a year agolg...
Hi,
I'm trying to use aws_s3.table_import_from_s3 to read data stored in a separate account, but the GetObject call is failing. If I reproduce the issue from the CLI, I get the following error:
The...
0
answers
0
votes
96
views
asked a year agolg...
I currently have a DynamoDB global table set up with encryption at rest configured using an AWS managed key (not owned by Amazon, so KMS charges apply).
My service that hits the DynamoDB table is...
0
answers
0
votes
169
views
asked a year agolg...
In trying to implement "encrypting and decrypting strings" under Android Studio, I find that the call to:
KmsMasterKeyProvider keyProvider =...
0
answers
0
votes
49
views
asked a year agolg...
Hi, when I started and stopped my lightsail instance (linux), it says "Error establishing a database connection."
Upon further investigation, I saw:
[pem file]: Please contact your system...
0
answers
0
votes
70
views
asked a year agolg...
CloudFront uses RSA/PKCS-1.5/SHA1 algorithm for its signatures.
KMS, for signing, requires minimum SHA2.
That sounds like a serious gap (plus use of SHA1 is questionable all together)
Is there a way...
0
answers
0
votes
143
views
asked a year agolg...