- 最新
- 最多得票
- 最多評論
AWS KMS pricing is listed here: https://aws.amazon.com/kms/pricing/
One way to know which service is using KMS is to go to CloudTrail in your account. Then click on "Event History" on the left hand side of your screen.
In the Filter, select "Event Source" and search for "kms" in "Enter event source" and select "kms.amazonaws.com". Adjust the time range for December. This will give you a list of events. You can then look at which services might be calling KMS on your behalf.
Another way is to start with the services you mentioned and look at which services have been configured to use either customer managed CMKs or AWS managed CMKs. That will also tell you if those services might be calling KMS.
From your list, Amazon SQS and AWS Lambda might be the ones making KMS calls.
You Rocks;
I Realize that lambda's environment variables are been encrypted ; and as each lambda has a set of then, they are been decrypted on each invoke call;
Environment variables are been used in new deployment at Jan/2020;
As I do not set any encryption option for then, it appears that my development framework does it for me !
Thanks so much !
相關內容
AWS 官方已更新 3 年前- AWS 官方已更新 1 年前
- AWS 官方已更新 5 個月前