Also, you cannot delete this key material you must delete the KMS key. Which you can export for use outside of AWS. The only exception is the public key of an asymmetric key pair, KMS keys, see the AWS Key Management Service API Reference.īy default, AWS KMS creates the key material for a KMS key. To use or manage your KMS keys, you must use AWS KMS. Symmetric KMS keys and the private keys of asymmetric KMS key never leaves AWS KMS You can create a KMS key with cryptographic key material generated in AWS KMS FIPS validated hardware security modules. Most importantly, it contains a reference to the key material that is used when you perform cryptographic Key usage, creation date, description, and key state. To prevent breaking changes, AWS KMS is keeping some variations of this term.Īn AWS KMS key is a logical representation of a cryptographic key.Ī KMS key contains metadata, such as the key ID, key spec, AWS KMS is replacing the term customer master key (CMK) with AWS KMS key and KMS key.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |