AWS Encryption

with Customer Managed Keys

---

We can encrypt the data with Customer managed AWS KMS Key.

Create a new AWS KMS Key

Using AWS Console

1. Open AWS KMS Console - http://console.aws.amazon.com/kms/home?#/kms/home

2. Create a new KMS Key

3. Use Key type: Symmetric, Key material origin: KMS

4. Use the alias rilldata and add some tags

5. Define the key administrative permissions as per your requirements.

6. For cross account access, add the use the Rill AWS account 248432388601 to use KMS key ID.

7. Finish creating the KMS Key

8. Share the ARN for the Customer Managed Key