The Fundamentals of the AWS Key Management Service (KMS)

Difficulty: Beginner
Duration: 2 minutes
Students: 998
Rating: 4.6/5

This lesson introduces the AWS Key Management Service, commonly referred to as KMS. It explains how the service uses cryptography to protect data stored in AWS.

Learning Objectives

By the end of this lesson, you will have a greater understanding of the following:

  • The basics of encryption.
  • What the AWS KMS service has been designed to help you with.
  • The different core components and features of KMS, including:
    • AWS KMS Keys
    • Customer keys, AWS Managed Keys, and AWS Owned keys
    • HMAC Keys
    • Data Keys
    • Data Key Pairs
    • Key Material
    • Key Rotation
    • Key Policies
    • Grants

Intended Audience

This lesson has been created for those who have the responsibility to enforce data security measures within AWS, to ensure that the appropriate controls are in place to effectively protect both company and customer data from being accessed by unauthorized parties.

Prerequisites

As a prerequisite, you should have a basic understanding of AWS storage services such as Amazon S3.

Covered Topics