Amazon EBS now supports cross-account copying of encrypted snapshots
Starting today, you can copy encrypted Amazon EBS snapshots between accounts, a capability previously supported only for unencrypted snapshots. Now you can easily copy encrypted snapshots between your development, test and production environments or between different department and project accounts. It also makes it easier for you to follow AWS security best practices which include copying encrypted snapshots to separately managed accounts, in the same or other regions, to provide an extra level of account isolation.
Copying of encrypted snapshots is supported for snapshots created from a customer-managed customer master key (CMK) and not those created with the default CMK. This protects you from needing to share your default CMK with another account in order to decrypt a resource.
Cross-account copying of encrypted EBS snapshots is supported today in the US East (Northern Virginia), US West (Northern California), US West (Oregon), Europe (Ireland), Europe (Frankfurt), Asia Pacific (Singapore), Asia Pacific (Sydney), Asia Pacific (Seoul), AWS Gov Cloud (US), South America (São Paolo), and Asia Pacific (Tokyo) regions. To learn more please see Jeff Barr’s Blog or Amazon EBS documentation.