AWS Certified Security Specialty All-in-One Exam Guide (Exam SCS-C01)

CHAPTER 7 AWS Cryptographic Services

In this chapter, you will learn about

• The concepts and mechanisms of AWS KMS and AWS CloudHSM

• How to use AWS KMS and AWS CloudHSM

• Use cases for AWS KMS and AWS CloudHSM

AWS Key Management Service (AWS KMS) is a managed service provided by AWS to give you a simple method of creation and control over customer master keys (CMKs). CMKs are the encryption keys used to encrypt your data and data keys. Your CMKs are protected by the hardware security modules (HSMs) AWS KMS uses and are validated at FIPS 140-2 Level 2 by the Cryptographic Module Validation Program. AWS KMS is integrated with most AWS services that offer encryption options. It is also integrated with AWS CloudTrail so you can have a ...

Get AWS Certified Security Specialty All-in-One Exam Guide (Exam SCS-C01) now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

AWS Certified Security Specialty All-in-One Exam Guide (Exam SCS-C01) by Tracy Pierce, Aravind Kodandaramaiah, Rafael Koike, Alex Rosa

CHAPTER 7

AWS Cryptographic Services

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly