Posted On: Jun 28, 2021

Amazon Key Management Service (KMS) now enables you to create and use asymmetric customer master keys (CMKs) and data key pairs in Amazon Web Services China (Beijing) region, operated by Sinnet, and Amazon Web Services China (Ningxia) region, operated by NWCD.

With this feature, you can perform digital signing operations using RSA and Elliptic Curve (ECC) keys. You can also perform public key encryption operations using RSA keys. The public portion of the key pairs can be used outside of the service. You can share public keys with your customers and partners so they can encrypt data or verify signatures without making a request to Amazon KMS. As with all other Amazon KMS APIs, asymmetric key usage is logged in Amazon CloudTrail to help meet your regulatory and compliance needs.