Posted On: Jul 23, 2021

Amazon Quantum Ledger Database (QLDB) now supports customer managed AWS Key Management Service (AWS KMS) keys to encrypt data at rest. Starting today, customers can encrypt QLDB Ledgers with keys created and controlled exclusively in their account, with key policy, audits, and key lifecycle managed by the customer. With this feature, QLDB customers can meet data security standards that require encryption using customer managed keys. New ledgers with customer managed KMS key support can be easily created with a single click in the AWS Management Console, the AWS Command Line Interface (AWS CLI), or an API call in AWS CloudFormation. 

Amazon QLDB is a fully managed ledger database that provides a transparent, immutable, and cryptographically verifiable transaction log. You can use QLDB to track all application data changes, and maintain a complete and verifiable history of changes to your data over time. Get started with Amazon QLDB and learn more about Customer Managed Keys today.