Harness over 40 enterprise-class cloud services to drive business efficiency

Sign Up
 ✕

Harness over 40 enterprise-class cloud services to drive business efficiency, Sign up »

Home  »  Products  »  Amazon KMS

Amazon Key Management Service (KMS)

Easily create and control the keys used to encrypt your data

Create a Free Account

Home  »  Products  »  Amazon KMS

Amazon Key Management Service (KMS)

Easily create and control the keys used to encrypt your data

Create a Free Account

Amazon Key Management Service (KMS) makes it easy for you to create and manage encryption keys. You define permissions that control the use of your keys to access encrypted data across a wide range of Amazon services and in your own applications. Amazon KMS is a secure and resilient service that uses hardware security modules to protect your keys. Amazon KMS is integrated with Amazon CloudTrail to provide you with logs of all key usage to help meet your regulatory and compliance needs.

Amazon Key Management Service (KMS) makes it easy for you to create and manage encryption keys. You define permissions that control the use of your keys to access encrypted data across a wide range of Amazon services and in your own applications. Amazon KMS is a secure and resilient service that uses hardware security modules to protect your keys. Amazon KMS is integrated with Amazon CloudTrail to provide you with logs of all key usage to help meet your regulatory and compliance needs.

Benefits

Fully managed
Avoid the need to build secure systems and to manage complex processes to protect your keys. KMS handles the full lifecycle of your keys so you can easily create, rotate, delete, and manage permissions on keys from the Amazon Web Services Management Console or by using the Amazon SDK or CLI.
Learn more 
Easy to get started

There is no commitment and no upfront charges to use Amazon KMS. You are only charged when you use or manage your keys and you only pay to store keys that you create.

Learn more 
Simplify encryption across Amazon Web Services
Expand your use of encryption to protect your data. Amazon KMS is integrated with Amazon Web Services services to provide a control point to define and enforce access controls consistently across compute instances, databases, storage environments and tools such as data analytics and machine learning.
Learn more 
Verify your keys are used correctly
Amazon KMS is integrated with Amazon CloudTrail to record all API requests. You can track and verify all attempts to use or manage your keys including encrypt and decrypt operations and changes that modify permissions. Logging API requests helps you manage risk, meet compliance requirements, and conduct forensic analysis.
Learn more 
Easily deploy encryption yourself
Avoid risk and complexity as you build encryption into your own systems. Using simple APIs you can use Amazon KMS as a centralized data encryption service. You can also build encryption capabilities directly into your applications using the Amazon Web Services Encryption SDK and manage your keys through its integration with Amazon KMS.
Confidence that your keys are secure
Amazon Web Services manages the security controls required to protect your keys from unauthorized physical access. You manage the access policies and lifecycle of keys to protect them from unauthorized logical access. Your keys are protected by government-approved hardware security modules (HSMs). Once created, your master keys can only be used inside the government-approved HSMs. There are no mechanisms for anyone, including service operators, to export or view your keys.
Learn more 

Benefits

Fully managed

Avoid the need to build secure systems and to manage complex processes to protect your keys. KMS handles the full lifecycle of your keys so you can easily create, rotate, delete, and manage permissions on keys from the Amazon Web Services Management Console or by using the Amazon SDK or CLI.
Learn more 

Easy to get started

There is no commitment and no upfront charges to use Amazon KMS. You are only charged when you use or manage your keys and you only pay to store keys that you create.
Learn more 

Simplify encryption across Amazon Web Services

Expand your use of encryption to protect your data. Amazon KMS is integrated with Amazon Web Services services to provide a control point to define and enforce access controls consistently across compute instances, databases, storage environments and tools such as data analytics and machine learning.
Learn more 

Verify your keys are used correctly

Amazon KMS is integrated with Amazon CloudTrail to record all API requests. You can track and verify all attempts to use or manage your keys including encrypt and decrypt operations and changes that modify permissions. Logging API requests helps you manage risk, meet compliance requirements, and conduct forensic analysis.
Learn more 

Easily deploy encryption yourself

Avoid risk and complexity as you build encryption into your own systems. Using simple APIs you can use Amazon KMS as a centralized data encryption service. You can also build encryption capabilities directly into your applications using the Amazon Web Services Encryption SDK and manage your keys through its integration with Amazon KMS.

Confidence that your keys are secure

Amazon Web Services manages the security controls required to protect your keys from unauthorized physical access. You manage the access policies and lifecycle of keys to protect them from unauthorized logical access. Your keys are protected by government-approved hardware security modules (HSMs). Once created, your master keys can only be used inside the government-approved HSMs. There are no mechanisms for anyone, including service operators, to export or view your keys.
Learn more 

Register Now to Unlock Free Trial

Experience over 40 cloud services to quickly find the right solutions for your business

Sign up now

How to Get Started

Find out How It Works
Learn more about Amazon Key Management Service security, compliance, and availability.
Explore Amazon KMS features 
Sign up for a Free Account
Pay nothing or try for free while learning the fundamentals and building on Amazon Web Services.
Create a Free Account 
Connect With an Expert
From development to enterprise-level programs, get the right support at the right time.
Explore support options 

How to Get Started

 Find out How It Works

Learn more about Amazon Key Management Service security, compliance, and availability.

Explore Amazon KMS features 

 Sign up for a Free Account

Pay nothing or try for free while learning the fundamentals and building on Amazon Web Services.

Create a Free Account 

 Connect With an Expert

From development to enterprise-level programs, get the right support at the right time.

Explore support options 
Getting Started with Cloud

Find product-specific user guides, training and tutorials 

View now »
Simple Application Server

Lightweight app servers demystified: concepts, management, scenarios, Amazon Web Services integration

Learn now »
Cloud Phone

Cloud phones : virtual mobile solutions - technology, architecture, advantages, challenges, and future outlook

Learn now »
12 Months Free
Amazon EC2

Try Amazon EC2 for free for up to 12 months, with 750 hours of two instances per month and 750 hours of free public IPv4 address

Sign up now
12 Months Free
Amazon EC2

Try Amazon EC2 for free for up to 12 months, with 750 hours of two instances per month and 750 hours of free public IPv4 address

Sign up now
 
 
Close
1010 0766
Beijing Region
Operated By Sinnet
1010 0966
Ningxia Region
Operated By NWCD
Close

1010 0766

Beijing Region
Operated By Sinnet

1010 0966

Ningxia Region
Operated By NWCD