使用 AWS re:Post 即表示您同意 AWS re:Post 使用條款
AWS re:Postre:Post

Changing Encryption key from Aws managed to Customer Managed

0

Hi friends,

My RDS databases are encrypted using Default AWS-managed keys, and everything works as expected. However, I'm confronted with the idea of using Customer managed keys which looks like additional work. I do not think it is needed at this moment, are there any security issues for remaining using default AWS encryption keys ? what strategy will be best for you? our environments, for the moment, do not have a workload that deserves this configuration.

I'm not very sure about rebuilding my entire environment to implement a customer-managed key. Any ideas ?

Best Regards,

主題
遷移與現代化分析資料庫
標籤
Amazon Relational Database ServiceAmazon RDS on VMWare資料庫加密
語言
English
Luis
已提問 2 年前檢視次數 301 次
1 個回答
0
已接受的答案

Please take a look at this AWS Premium Support article - https://aws.amazon.com/premiumsupport/knowledge-center/s3-object-encryption-keys/

Although this article talks about S3, but technically it should be no different anywhere else you use KMS for encryption of data at rest.

profile pictureAWS
專家
Indranil Banerjee AWS
已回答 2 年前
profile picture
專家
Sedat Salman
已審閱 10 個月前
profile pictureAWS
專家
AWS-User-Nitin
已審閱 1 年前

您尚未登入。 登入 去張貼答案。

一個好的回答可以清楚地回答問題並提供建設性的意見回饋,同時有助於提問者的專業成長。

回答問題指南

相關內容