The new AWS Key Management Service's DeriveSharedSecret API enables two parties to securely establish a shared secret over an insecure channel using ECDH.
With this action, customers can use an external party's public key and their private key within AWS KMS to derive a shared secret for symmetric encryption.
The inclusion of KMS ECDH keyrings in the AWS Encryption SDK allows developers to easily choose key derivation functions to implement robust security measures.
ECDH key agreement serves as a foundational element for hybrid encryption schemes and secure communications in isolated environments, enhancing data protection.
Collection
[
|
...
]