Certified Security - Specialty

Sign Up Free or Log In to participate!

KMS part 1- Why John Adams cant view the file with KMS encryption

One thing I dont understand is John Adams is the key user and admin, so when trying to access the pdf why cant he see it but with AES 256 he can?

1 Answers

In this particular example, by clicking on the object link, he’s now viewing the file publicly. He’s not viewing the document as ‘John Adams’ the IAM user, he’s viewing it as just some random internet user who doesn’t have access to the encryption key. In the case of using the server side encryption, with Amazon having the key, and the object marked as public you can open it because Amazon has access to the key in this case.

Muhtashim Ayub

So what would need to be done for John Adams to view the file?

Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!

Get Started
Who’s going to be learning?