Skip to main content
747 questions
Newest Active Bountied Unanswered
1 vote
0 answers
47 views

I'm building a route for my go (gin) server that generates a Data Encryption Key (DEK), following the principle of zero-trust (the backend never sees the plaintext). Right now, the client generates a ...
Alexxino's user avatar
  • 928
0 votes
0 answers
66 views

I'm having hard time getting my KMS key working for my log group. Right now I got this error in pulumi up: policy: operation error KMS: PutKeyPolicy, [some other informations] ...
Hadock's user avatar
  • 1,018
-4 votes
1 answer
134 views

I'm looking into encrypting an SQS Queue that I've got using the CDK, and as options, there are Encryption type Description UNENCRYPTED Messages in the queue are not encrypted. KMS_MANAGED Server-side ...
Animals4Life's user avatar
  • 19
0 votes
0 answers
36 views

I want to create an asymmetric customer managed key for key agreement in Terraform. The Terraform doc does not specify "KEY_AGREEMENT" as a valid value for key usage, although its provided ...
Navneet's user avatar
  • 401
1 vote
1 answer
112 views

I have a CloudFormation template which I am using to configure lambda to decrypt AWS RDS database activity stream logs I used the lambda function from: https://github.com/aws-samples/optimising-aws-...
Hamza Siddiqui's user avatar
  • 21
0 votes
0 answers
32 views

I'm trying to set up an AWS KMS Custom Key Store using a CloudHSM cluster in eu-north-1, but I'm running into a silent failure: the key store remains in the DISCONNECTED state, and no ...
Naz V's user avatar
  • 1
0 votes
1 answer
263 views

I'm trying to configure AWS Athena in the account A to query a dataset in account B. I updated the S3 bucket policy in account A to enforce secure transport and allow access from a specific IAM ...
jipot's user avatar
  • 146
0 votes
0 answers
64 views

I am trying to copy some files from S3 in one account to EC2 instance in another account. Bucket and ec2 are in different accounts but same region I have the appropriate IAM roles attached to the EC2 ...
Code8549's user avatar
  • 1
0 votes
0 answers
54 views

We are running our containers in an environment that requires a proxy to communicate with AWS services. I was able to set the proxy using AWS.config.update({ httpOptions: { agent } }), but it does not ...
Aravind Piratla's user avatar
  • 41
0 votes
0 answers
290 views

I am getting an error when I try to decrypt the data which is encrypted by AWS KMS. Able to encrypt the data without any issue but while decrypting getting the error. Error: No Configured Keyring was ...
S2T's user avatar
  • 3
0 votes
1 answer
379 views

When I create a DynamoDB table, I can choose to encrypt the table use a customer managed Key (CMK). My question is when creating an IAM role/policy to allow say, read/write to the table, like dynamodb:...
Bin Chen's user avatar
  • 59
1 vote
1 answer
143 views

I'm using KMS to encrypt / decrypt data using @aws-crypto/client-node. I would like to use be able to provide the URL of a custom server to contact for testing purpose. But can't find how to provide ...
antoine's user avatar
  • 123
0 votes
1 answer
269 views

I am currently using the aws encryption sdk to encrypt and decrypt some of my data (encrypted at rest). However, when trying to decrypt a lot of the data at once, it is very slow. On inspection, it ...
SoftwareThings's user avatar
  • 464
0 votes
1 answer
2k views

I have the question about the KMS and iam settings I use the terraform to build the infra, after setting up the kms and encryped them in my ec2, s3, rds, it told me the error:Status Reason: Instance ...
fangle xi's user avatar
  • 3
0 votes
0 answers
121 views

I have a 4096-RSA Private key that I want to use as key material in AWS KMS to generate a KMS key. While setting up an external key in AWS KMS, it does not let us upload a Key Material directly for ...
Brijesh Patel's user avatar
  • 128

15 30 50 per page
1
2 3 4 5
50