Amazon EventBridge Archive and Replay now supports Customer Managed KMS Keys
Amazon EventBridge Archive and Replay now supports Amazon Key Management Service (KMS) customer managed keys, allowing you to encrypt your archived events with your own keys instead of default Amazon Web Services owned keys. Using keys that you create, own, and manage can satisfy your organization’s security and governance requirements.
The Archive and Replay feature is integrated with the Amazon EventBridge Event Bus, which enables you to create scalable event-driven applications by routing events between your own applications, third-party SaaS applications, and other Amazon Web Services services. You can set up routing rules on the event bus to determine where to send your events, allowing for application architectures to react to changes in your systems as they occur. Event buses make it easier to build event-driven applications by facilitating event ingestion, delivery, security, authorization, and error handling. With support for Customer Managed Keys, you have more fine-grained security control over your archived events to more easily meet your organization's regulatory and compliance requirements. You can also audit and track usage of your encryption keys with Amazon CloudTrail.
Customer managed key support for EventBridge Pipes is available in Amazon Web Services China (Ningxia) Region, operated by NWCD, and Amazon Web Services China (Beijing) Region, operated by Sinnet.
To get started, follow the directions provided in the EventBridge documentation. To learn more about customer managed keys, visit the Amazon Key Management Service documentation.