Posted On: Nov 19, 2018

AWS Secrets Manager makes it easier to follow the security best practice of using short-term secrets by rotating secrets safely on a schedule that you determine. For example, you can configure Secrets Manager to rotate a database credential daily, turning a typical, long-term secret in to a short-term secret that is rotated automatically. Today, Secrets Manager introduced a client-side caching library for Java and a client-side caching library of Java Database Connectivity (JDBC) drivers that make it easier to use these secrets in your applications.  

Client-side caching can help you improve the availability of using your secrets by reducing the impact of network availability issues, such as increased response times and temporary loss of network connectivity. It can also reduce the cost of using Secrets Manager by reducing the number of API requests made to and billed by Secrets Manager. The libraries update the cache periodically, ensuring your applications use the most up to date secret value, which you may have configured to rotate regularly.

Secrets Manager is available in the AWS US East (N. Virginia), US East (Ohio), US West (N. California), US West (Oregon), Canada (Central), EU (Frankfurt), EU (Ireland), EU (London), Asia Pacific (Tokyo), Asia Pacific (Seoul), Asia Pacific (Singapore), Asia Pacific (Sydney), Asia Pacific (Mumbai), and South America (São Paulo) regions. Learn more about client-side caching libraries.