aws-kms

I've just started to work with AWS services, particularly AWS Lambda. Is there a way to use AWS KMS service from within Lambda code (Java). I'd like to use KMS to decrypt an encrypted externalized (read from a property) secret. My Lambda code is in java. Thanks in advance. Yes, it should work fine. I recently ported a Node.js RESTful API over to Lambda and didn't have to change any KMS code. You'll just need to make sure the role your Lambda function runs under has permissions to the key you setup through AWS to use with the encrypt/decrypt calls. kleaver In Python: with open('encrypted_pem

Amazon states that Encryption and decryption are handled transparently so you don’t have to modify your application to access your data My application (Rails, MySQL, Elasticsearch) builds a lot of graphics and therefore queries a lot of data. From my prior experience with database encryption, it really affects data retrieving speed (as we can only say if record matches condition after reading and decryptng it). Is there any relevant benchmarks? Or maybe you have worked with such server-side encryption from AWS? Do I need to worry about performance changes at all? Also it's not quite clear for

I am trying to use Amazon S3 as a file system with encryption. I am successfully able to achieve uploading file on AWS S3 server using KMS Encrypted key (Server side Encryption). Please find below working code : For Encrypt: private static final String AWS_KMS_KEY = "---KMS Key---" private static final String BUCKET_NAME = "---bucket name---" private static final String keyName = "---display key name---" private static final String filePath = "---File Path---" private static final String ACCESS_KEY_ID = "---aws accesskey---" private static final String SECRET_ACCESS_KEY = "---aws secret key---

So this week, I have started to begin learning the CLI and seeing what can be done within this. I was given the task of grabbing information regarding this: Key Alias Key ID All associated tags I have tried many methods within this... and can't seem to get anywhere. I have only been doing this for around 4 days and I just began documenting key API calls that will come in use for the future. I seem to not be able to grab this in a --output table. If anyone could be able to give me a guidance on this. Also, does anyone have any tips from someone who is just starting his Cloud Journey and any

I am trying to write a utility using aws-java-sdk (1.11.230). I am able to write a file with SSE-KMS by using PutObjectRequest as follow: PutObjectRequest putRequest = new PutObjectRequest(existingBucketName, keyName, file) .withSSEAwsKeyManagementParams(kmsKeyId); but while trying to upload it in multipart, I could not find any way to specify encryption configuration for SSE-KMS. Could anyone please suggest a way to go through this successfully. Any suggestion will be appreciated. Vikash Pareek Finally, I am able to find the solution for this. It can be done by setting headers to

I am working with the AWS SDK using the KMS libary. I would like to use async and await instead of callbacks. import AWS, { KMS } from "aws-sdk"; this.kms = new AWS.KMS(); const key = await this.kms.generateDataKey(); However this does not work, when wrapped in an async function. How can i use async and await here? If you are using aws-sdk with version > 2.x, you can tranform a aws.Request to a promise with chain .promise() function. For your case: try { let key = await kms.generateDataKey().promise(); } catch (e) { console.log(e); } the key is a KMS.Types.GenerateDataKeyResponse - the second