AWS Database Blog

Category: AWS Key Management Service

AWS Nitro Enclaves for secure blockchain key management: Part 3

In Part 1 of this series, we gave a high-level introduction to the AWS Nitro System and explained why Nitro is well suited for flexible and secure blockchain key management workloads. In Part 2, we guided you through the steps to configure aspects like AWS Key Management Service (AWS KMS) key policies and how to […]

AWS Nitro Enclaves for secure blockchain key management: Part 2

In Part 1 of this series, we provided a high-level introduction to the AWS Nitro System and explained why Nitro is well suited for flexible and secure blockchain key management workloads. In this post, we guide you through the steps to configure aspects like AWS Key Management Service (AWS KMS) key policies and how to […]

AWS Nitro Enclaves for secure blockchain key management: Part 1

Public blockchains are used for a variety of use cases, like decentralized finance (DeFi) apps, non-fungible token (NFT) apps, or cross-border payments. Blockchains differ in their protocol and consensus design, implementation language, and smart contract capabilities. Determining how external participants can be incentivized to join a network running their own node is key in economic […]

How to sign Ethereum EIP-1559 transactions using AWS KMS

Ethereum is a popular public blockchain that enables you to create decentralized applications across a variety of use cases. In 2020 and 2021, it became widely used for decentralized finance (DeFi) apps and non-fungible token (NFT) apps. Due to its permissionless nature, it’s available to every user by just setting up an Ethereum account. These […]

How to encrypt Amazon Aurora using AWS KMS and your own KMS key

When selecting a relational database engine, customers look at many different aspects, including management, performance, reliability, automation, and more recently, the ability to natively encrypt data at rest. Amazon Aurora provides a highly available, optimal, and scalable relational database engine that supports both MySQL and PostgreSQL. Amazon Aurora also supports native encryption of data at […]

Use Key Management Service (AWS KMS) to securely manage Ethereum accounts: Part 2

Ethereum is a popular public blockchain that makes it possible to create unstoppable applications in a permissionless fashion. It’s available to every user that has an Ethereum account. These Ethereum accounts consist of a private and an associated public key. The main challenge as a user participating in a public blockchain such as Ethereum is […]

Use Key Management Service (AWS KMS) to securely manage Ethereum accounts: Part 1

Ethereum is a popular public blockchain that makes it possible to create unstoppable applications in a permissionless fashion. It’s available to every user that has an Ethereum account. These Ethereum accounts consist of a private and an associated public key. The main challenge as a user participating in a public blockchain such as Ethereum is […]

Bring your own encryption keys to Amazon DynamoDB

Today, Amazon DynamoDB introduced support for customer managed customer master keys (CMKs) to encrypt DynamoDB data. Often referred to as bring your own encryption (BYOE) or bring your own key (BYOK), this functionality lets you create, own, and manage encryption keys in DynamoDB, giving you full control over how you encrypt and manage the security […]

Performing SQL database client-side encryption for multi-Region high availability

Important Update: On 06/16/2021 AWS Key Management Service (AWS KMS) introduced multi-Region keys, a new capability that lets you replicate keys from one AWS Region into another. With multi-Region keys, you can more easily move encrypted data between Regions without having to decrypt and re-encrypt with different keys in each Region. Multi-Region keys are supported […]

Securing data in Amazon RDS using AWS KMS encryption

This post has been reviewed and/or updated on June 2022. Data privacy is essential for organizations in all industries. Encryption services provide one standard method of protecting data from unauthorized access. However, encryption changes data in a way that makes it unreadable without the correct decryption key. Amazon Relational Database Service (Amazon RDS) can encrypt […]