Option to use AWS KMS–Managed Keys (SSE-KMS) for server side encryption #9426

cyberduck · 2016-04-08T03:56:50Z

bc6d0fa created the issue

Add support for S3 SSE-KMS (see: http://docs.aws.amazon.com/AmazonS3/latest/dev/UsingKMSEncryption.html). This would enable users to input their KMS Key Id, and Cyberduck can send this key id as part of the upload request.

In the context of AWS CLI commands, you can check out this documentation: http://docs.aws.amazon.com/cli/latest/reference/s3api/put-object.html

You can specify the KMS Key Id by using --ssekms-key-id parameter.

cyberduck · 2016-04-22T13:51:06Z

@dkocher commented

In ce0f78b. Currently there is no option to select a key but the default key configured in KMS.

cyberduck · 2016-04-22T14:19:25Z

@dkocher commented

We plan to add support to select specific keys to use per bucket in a later version.

cyberduck · 2016-05-21T20:03:57Z

@dkocher commented

Allow selection of encrypstion keys managed in AWS-KMS in 31caffd.

cyberduck closed this as completed Apr 22, 2016

cyberduck assigned dkocher Nov 26, 2021

iterate-ch locked as resolved and limited conversation to collaborators Nov 26, 2021

Provide feedback