Achieve full control over your data encryption using customer managed keys in Amazon Managed Service for Apache Flink

Big Data Blog

The article discusses the new feature in Amazon Managed Service for Apache Flink that allows customers to use customer-managed keys (CMKs) for encrypting application data, providing enhanced control over data encryption.

Enables full control over encryption keys stored in AWS Key Management Service (AWS KMS)
Supports encryption of data at rest, including application storage and running application state
Follows the principle of least privilege with carefully designed permission mechanisms
Supports key rotation and switching between AWS owned and customer-managed keys
Requires Flink runtime version 1.20 or later

Key considerations include managing complex IAM roles and policies, understanding the sequence of operations for enabling CMKs, and being aware of restart requirements when changing encryption keys.

Go to article

The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.

Aug 20
2025

Amazon Managed Service for Apache Flink now supports Customer Managed Keys (CMK)

Mar 18
2024

Amazon Managed Service for Apache Flink now supports Apache Flink version 1.18

Jul 8
2024

Amazon Managed Service for Apache Flink now supports Apache Flink version 1.19

Jun 27
2024

Amazon Managed Service for Apache Flink now supports Apache Flink 1.19

The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.

Achieve full control over your data encryption using customer managed keys in Amazon Managed Service for Apache Flink

Related articles