AWS Encryption SDK

1. The GenerateDataKey API from KMS is called to retrieve an encryption key in both plain text and encrypted formats for encrypting large files. 2. The encryption and decryption of the file happens on the client side using the plain text key, with the encrypted key bundled with the encrypted file data in a process called envelope encryption. 3. Decryption involves calling the decrypt API to decrypt the encrypted key and then using the plain text key to decrypt the file data.

Uploaded by

abhi4wit

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

97 views

AWS Encryption SDK

Uploaded by

abhi4wit

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 1

GenerateDataKeyApi is

called on KMS to get the

CMS key in the Plain
text and Encrypted
format

If the ﬁle to be 1. Client Request for

The technique is called
encrypted is more that CMS Key using the
Envelope Encyption
4KB then use this GenerateDataKey API
for encrypting a large
ﬁle
This is different from
Facts
the AWS S3 encryption
2. The KMS responds
back with 2
Both the Encryption and components, the CMS
Decryption happens on key in Plain Text and
the client side CMS key encrypted.

3. The File itself in

Encrypted using the
Flow Plain Text key
AWS Encryption SDK

4. The Encrypted Key in

aws-encryption-cli then bundled with
Comes with a CLI Encrypted CMS Data key
command
and completes the
Encryption. This bundle
is termed as Envelope
Encrytion

5. Decryption is
basically the reverse of
the above steps starting
with call the Encrypt
and Decrypt APIS

The Definitive Guide To Encryption Key Management Fundamentals
No ratings yet
The Definitive Guide To Encryption Key Management Fundamentals
35 pages
Encryption SDK Developer Guide
No ratings yet
Encryption SDK Developer Guide
103 pages
Demystifying AWS KMS in Plain Language Jan 2024
No ratings yet
Demystifying AWS KMS in Plain Language Jan 2024
38 pages
Digital Envelope: Presented By: Afjal Das P (104201) Advanced Communication Systems M. Tech, 3 Semester
No ratings yet
Digital Envelope: Presented By: Afjal Das P (104201) Advanced Communication Systems M. Tech, 3 Semester
16 pages
Amazon Efs Encrypted Filesystems
No ratings yet
Amazon Efs Encrypted Filesystems
18 pages
RFC 3565
No ratings yet
RFC 3565
14 pages
TCS
No ratings yet
TCS
54 pages
Data Encryption Safeguarding Your Information[1]
No ratings yet
Data Encryption Safeguarding Your Information[1]
8 pages
General: AWS Encryption SDK
No ratings yet
General: AWS Encryption SDK
11 pages
06 Encryption and Data Protection
100% (1)
06 Encryption and Data Protection
49 pages
CMSServer_FileEncryption
No ratings yet
CMSServer_FileEncryption
1 page
Study Public Key and Symmetric Key Encryption With The Help of Diagram and Write Steps of Performing. Also Study DES Standard?
No ratings yet
Study Public Key and Symmetric Key Encryption With The Help of Diagram and Write Steps of Performing. Also Study DES Standard?
9 pages
SAP PI AES Encryption in Message Mapping - Jaehoo Weblog
100% (1)
SAP PI AES Encryption in Message Mapping - Jaehoo Weblog
4 pages
Network Security 2 v2
No ratings yet
Network Security 2 v2
42 pages
SAP CPI - Encryption and Decryption Using PGP Keys - SAP Community
No ratings yet
SAP CPI - Encryption and Decryption Using PGP Keys - SAP Community
24 pages
4 Common Encryption Methods and Use Cases
No ratings yet
4 Common Encryption Methods and Use Cases
3 pages
Crypto Key MGMT
No ratings yet
Crypto Key MGMT
58 pages
Encryption Presentation Updated
No ratings yet
Encryption Presentation Updated
13 pages
CCNP 2 VPN: 3.1.4 3.1.4 Characteristics of A Secure Vpns
No ratings yet
CCNP 2 VPN: 3.1.4 3.1.4 Characteristics of A Secure Vpns
15 pages
NSC Unit-2 (R18)
No ratings yet
NSC Unit-2 (R18)
11 pages
Ch5 NIS
No ratings yet
Ch5 NIS
61 pages
3.5.1 Asymmetric Keys and Encryption Methods
No ratings yet
3.5.1 Asymmetric Keys and Encryption Methods
5 pages
Encryption: A Guide For Business Leaders: by Brandon Vigliarolo
No ratings yet
Encryption: A Guide For Business Leaders: by Brandon Vigliarolo
8 pages
Encryption and Its Application To E-Commerce
No ratings yet
Encryption and Its Application To E-Commerce
13 pages
E-Commerce: Security Challenges and Solutions: Dr. Khalid Al-Tawil
No ratings yet
E-Commerce: Security Challenges and Solutions: Dr. Khalid Al-Tawil
65 pages
E-Commerce: Security Challenges and Solutions: Dr. Khalid Al-Tawil
No ratings yet
E-Commerce: Security Challenges and Solutions: Dr. Khalid Al-Tawil
65 pages
03 - Cryotography (2)
No ratings yet
03 - Cryotography (2)
41 pages
Bucket
No ratings yet
Bucket
1 page
Part - 3 Encryption and Decryption in ASP - NET Core Web API
No ratings yet
Part - 3 Encryption and Decryption in ASP - NET Core Web API
13 pages
Untitled
No ratings yet
Untitled
5 pages
MODULE 5
No ratings yet
MODULE 5
41 pages
andrew23
No ratings yet
andrew23
15 pages
VI Network Secirity-Email Security PGP SMIME
No ratings yet
VI Network Secirity-Email Security PGP SMIME
47 pages
NIS Unit-5(PPT)
No ratings yet
NIS Unit-5(PPT)
61 pages
Lecture 4.3
No ratings yet
Lecture 4.3
21 pages
E-Mail Encryption: Name: - Venkatesh Mudavath Roll No.:-Jvs-600
No ratings yet
E-Mail Encryption: Name: - Venkatesh Mudavath Roll No.:-Jvs-600
17 pages
Encryption As A Countermeasure For Information Assurance
No ratings yet
Encryption As A Countermeasure For Information Assurance
5 pages
Electronic Mail Security: Pretty Good Privacy (PGP)
No ratings yet
Electronic Mail Security: Pretty Good Privacy (PGP)
7 pages
Cryptography
No ratings yet
Cryptography
1 page
ISDF_Email_PGP
No ratings yet
ISDF_Email_PGP
14 pages
FALLSEM2024-25 BECE355L TH VL2024250103231 2024-09-19 Reference-Material-I
No ratings yet
FALLSEM2024-25 BECE355L TH VL2024250103231 2024-09-19 Reference-Material-I
17 pages
Encryption-and-Decryption-Securing-Your-Digital-World
No ratings yet
Encryption-and-Decryption-Securing-Your-Digital-World
10 pages
2 Intro Crypto
No ratings yet
2 Intro Crypto
81 pages
PGP Key Generation
No ratings yet
PGP Key Generation
2 pages
Exercise - Encrypted Socket Creation
No ratings yet
Exercise - Encrypted Socket Creation
2 pages
Unit 4 Electronic Mail Security
No ratings yet
Unit 4 Electronic Mail Security
35 pages
Email Security For IT: How To Keep Your Brand Safe: /delivers
No ratings yet
Email Security For IT: How To Keep Your Brand Safe: /delivers
6 pages
Encryption: Monica Stoica, Smonica@cs - Bu.edu
No ratings yet
Encryption: Monica Stoica, Smonica@cs - Bu.edu
25 pages
Hands-On Multi-Cloud Kubernetes: Multi-cluster kubernetes deployment and scaling with FluxCD, Virtual Kubelet, Submariner and KubeFed
From Everand
Hands-On Multi-Cloud Kubernetes: Multi-cluster kubernetes deployment and scaling with FluxCD, Virtual Kubelet, Submariner and KubeFed
Joe Brian
No ratings yet
DCN UNIT 6 AIDS
No ratings yet
DCN UNIT 6 AIDS
13 pages
node js
No ratings yet
node js
3 pages
A Generic Evolution of Key Using Quantum Cryptography Management For Transcript
No ratings yet
A Generic Evolution of Key Using Quantum Cryptography Management For Transcript
5 pages
17 Security Complete (MT-L)
No ratings yet
17 Security Complete (MT-L)
12 pages
Ch 3 & 4 Summery
No ratings yet
Ch 3 & 4 Summery
13 pages
Implementing Messged I Integration
No ratings yet
Implementing Messged I Integration
9 pages
NIS Paper
No ratings yet
NIS Paper
21 pages
Introduction To AES For Big Data Encryption
No ratings yet
Introduction To AES For Big Data Encryption
7 pages
Hashing Digital Signature
No ratings yet
Hashing Digital Signature
73 pages
Iis Mod 1 Part 3
No ratings yet
Iis Mod 1 Part 3
16 pages
Digitalsignatures 100714211316 Phpapp02
No ratings yet
Digitalsignatures 100714211316 Phpapp02
37 pages
AWS EC2 Instance Metadata
No ratings yet
AWS EC2 Instance Metadata
1 page
API Gateway Security
0% (1)
API Gateway Security
1 page
Aws Cli
No ratings yet
Aws Cli
1 page
Amazon: Exam Questions AWS-Certified-Developer-Associate
No ratings yet
Amazon: Exam Questions AWS-Certified-Developer-Associate
6 pages
Nilesh - Gawas: How Do You Sleep... ??
No ratings yet
Nilesh - Gawas: How Do You Sleep... ??
6 pages
Illusioni Octavio Ocampo
No ratings yet
Illusioni Octavio Ocampo
14 pages
Keyboard Shortcuts
No ratings yet
Keyboard Shortcuts
1 page
Affine Cipher: Project Code
No ratings yet
Affine Cipher: Project Code
4 pages
Cryptography - Ps
No ratings yet
Cryptography - Ps
25 pages
AAA With Active Directory - MikroTik Wiki
No ratings yet
AAA With Active Directory - MikroTik Wiki
10 pages
What Are Blockchain and Cryptocurrencies?
No ratings yet
What Are Blockchain and Cryptocurrencies?
2 pages
CIS RAM v2.1 For IG2 Workbook 23.03
No ratings yet
CIS RAM v2.1 For IG2 Workbook 23.03
364 pages
RSA Practice Exercise
No ratings yet
RSA Practice Exercise
2 pages
Rainbow Crack v1.0 Tutorial
No ratings yet
Rainbow Crack v1.0 Tutorial
5 pages
Week 4 Assignment Solution
No ratings yet
Week 4 Assignment Solution
5 pages
Network Security Class Notes
No ratings yet
Network Security Class Notes
43 pages
AppMap Is The Reference Created by VSP To Define The Legitimate Behavior of An Application
No ratings yet
AppMap Is The Reference Created by VSP To Define The Legitimate Behavior of An Application
1 page
Colegio de Montalban Institute of Computer Studies Department of Information Technology
No ratings yet
Colegio de Montalban Institute of Computer Studies Department of Information Technology
4 pages
Information Security Notes
No ratings yet
Information Security Notes
15 pages
Linux Network Administration II, Network Security and Firewalls - Student Notebook (IBM Learning, 2003, Course Code LX24)
No ratings yet
Linux Network Administration II, Network Security and Firewalls - Student Notebook (IBM Learning, 2003, Course Code LX24)
382 pages
UNIT IV Digital Signatures and Authentication Protocols
No ratings yet
UNIT IV Digital Signatures and Authentication Protocols
32 pages
Vba Login Code
No ratings yet
Vba Login Code
1 page
The Role of Multi Domain Operations in Modern Warfare
No ratings yet
The Role of Multi Domain Operations in Modern Warfare
7 pages
Lecture 2 Data Governance
No ratings yet
Lecture 2 Data Governance
44 pages
Unit 1
No ratings yet
Unit 1
28 pages
Securing Information Systems: Case Study of Stuxnet and Cyberwarfare
No ratings yet
Securing Information Systems: Case Study of Stuxnet and Cyberwarfare
3 pages
CS & DF Syllabus
No ratings yet
CS & DF Syllabus
2 pages
Vulnerability Assessment and Penetration Testing IJERTV10IS050111
No ratings yet
Vulnerability Assessment and Penetration Testing IJERTV10IS050111
6 pages
Creds
100% (2)
Creds
6 pages
ITM820 - Enterprise Systems Security & Privacy
No ratings yet
ITM820 - Enterprise Systems Security & Privacy
7 pages
Cloud Assignment 2
No ratings yet
Cloud Assignment 2
14 pages
Juniper Netscreen ISG Series Datasheet
No ratings yet
Juniper Netscreen ISG Series Datasheet
12 pages
An Overview of Block-Chain Technology and Related Security Attacks: Systematic Literature Review
No ratings yet
An Overview of Block-Chain Technology and Related Security Attacks: Systematic Literature Review
15 pages
4. Makalah teknologi dalam militer
No ratings yet
4. Makalah teknologi dalam militer
7 pages
Fortinet - Premium.nse6 .By .VCEplus.23q DEMO Premium
No ratings yet
Fortinet - Premium.nse6 .By .VCEplus.23q DEMO Premium
10 pages
Intrushield Ips
No ratings yet
Intrushield Ips
9 pages
Endpoint Security Summary
No ratings yet
Endpoint Security Summary
32 pages

AWS Encryption SDK

Uploaded by

AWS Encryption SDK

Uploaded by

GenerateDataKeyApi is

called on KMS to get the

If the ﬁle to be 1. Client Request for

3. The File itself in

4. The Encrypted Key in

You might also like