Create and control keys with AWS Key Management Service
60%
34.3%
5.7%
0%
0%
The service uptime gives you peace of mind and that is very important for such a critical service like key management. If your whole infrastructure is based in AWS, then KMS is a no brainer but keep in mind that this service will tie you up to it forever.
The somewhat cumbersome API when you don't use the java SDK. I mean, I have used the node.js SDK and it works fine but the API is not very "idiomatic" and looks like a JAVA SDK.
KMS will solve the generation and storage of keys for you, also will solve you any encryption need as long as you don't need to do a ton of encrypt/decrypt operations.
This service is the enabler for all other services that AWS uses to encrypt your data, eg s3, rds, kinesis and such. I use it for parameter store to encrypt api keys and its really simple and does it job good for that
I dont really have anything that I believe I dislike with the service
This is a must have service when you edploy own code
To encrypt different keys and password for applications instead of having them in clear as env variables
We have a policy where Bring Your Own Key is required for confidential data in the cloud and AWS has streamlined the process for us.
When we import an encryption key for usage in another account that other account is not able to reference our key by key alias natively. It should be easy enough for AWS to add the ability to reference an encryption key by key alias across accounts.
The cloud space is constantly growing and we have found that the documentation does not always keep up with how quickly everything else progresses. If you see AWS documentation stating something is not possible, please make sure you submit a ticket to AWS first as we have found that a feature may be available, but they did not have time to update the support materials.
This give us the ability to migrate data and applications to the cloud, but still protect that data with a key that we own and manage.
we have multiple products and for those can use different kms keys or share it depending upon environment
I was able to create two kms with same name. had to delete one of those before i could proceed with using the right one.
encrypting
I love how easy it is to work with encryption keys. I love that metadata is saved with the key so there is not much information that is required to perform a decryption operation
I don't like that root is preprovisioned in the kms key policy. I understand why but I feel like enabling iam access is something that should be done explicitly by the admin and not a default.
encrytping secrets for all my cloud apps
We used kms heavily in our platform, easy to use
nothing wrong we found it, its good , we did not find anhthing
Managing keys
It is easy to use and reliable, no problems
did not envcounter any problems so far, so far positive
Using this for encrypting almost any storage
Love that Amazon KMS is fully managed by the AWS team and helps free up my time and my team's time by owning/maintaining the underlying infrastructure.
Not many complaints or issues so far. Been pretty happy with it.
It's very cheap, it's owned by AWS, and gives me back more time in my day.
-Easy to plug into application using AWS sdk
-Support for nearly All OS
-Good key rotation policy
-Lot of big and secure Applications trust KMS
-Default key rotation policy is not ideal
-Could look confusing at first usage
-AWS UI is still for power user, newbies could struggle
Keeping logs and metrics encrypted on android device
Looking for the right SaaS
We can help you choose the best SaaS for your specific requirements. Our in-house experts will assist you with their hand-picked recommendations.
Want more customers?
Our experts will research about your product and list it on SaaSworthy for FREE.
Was very easy to create a key to be able to encrypt/decrypt an rds database. The granularity of security is also good to decide who has access to the key. The built-in key rotation is also a nice feature.
Nothing at the moment. It was very easy to setup for my needs and did not have any problems yet.
Centralizing keys in AWS. Do not have to use external systems to maintaining this portion and the integration is great.