Select your cookie preferences

We use essential cookies and similar tools that are necessary to provide our site and services. We use performance cookies to collect anonymous statistics, so we can understand how customers use our site and make improvements. Essential cookies cannot be deactivated, but you can choose “Customize” or “Decline” to decline performance cookies.

If you agree, AWS and approved third parties will also use cookies to provide useful site features, remember your preferences, and display relevant content, including relevant advertising. To accept or decline all non-essential cookies, choose “Accept” or “Decline.” To make more detailed choices, choose “Customize.”

Skip to main content

AWS Key Management Service

Create and control keys used to encrypt or digitally sign your data

Benefits

Centrally manage keys and define policies across integrated services and applications from a single point.
Encrypt data within your applications with the AWS Encryption SDK data encryption library.
Perform signing operations using asymmetric key pairs to validate digital signatures.
Securely generate hash-based message authentication codes (HMACs) that ensure message integrity and authenticity.

What is AWS KMS?

Use AWS KMS to encrypt data across your AWS workloads, digitally sign data, encrypt within your applications using AWS Encryption SDK, and generate and verify message authentication codes (MACs). To watch in your local language, select this video, choose the settings icon, and pick your preferred subtitle option.

Use cases

Activate server-side encryption with AWS KMS using KMS keys that you control and manage.

Use the AWS Encryption SDK to securely handle cryptographic operations in your applications.

Learn more about the AWS Encryption SDK

Protect signing operations with AWS KMS using asymmetric KMS keys.

Learn more about secure data signing

Use the AWS Database Encryption SDK to easily encrypt and securely search sensitive records in your databases.

Learn more about the AWS Database Encryption SDK