AWS Key Management Service vs AWS Secrets Manager

Need advice about which tool to choose?Ask the StackShare community!

AWS Key Management Service

224
163
+ 1
13
AWS Secrets Manager

120
135
+ 1
5
Add tool

AWS Key Management Service vs AWS Secrets Manager: What are the differences?

AWS Key Management Service: Easily create and control the encryption keys used to encrypt your data. AWS Key Management Service (KMS) is a managed service that makes it easy for you to create and control the encryption keys used to encrypt your data, and uses Hardware Security Modules (HSMs) to protect the security of your keys. AWS Key Management Service is integrated with other AWS services including Amazon EBS, Amazon S3, and Amazon Redshift. AWS Key Management Service is also integrated with AWS CloudTrail to provide you with logs of all key usage to help meet your regulatory and compliance needs; AWS Secrets Manager: Store, Distribute, and Rotate Credentials Securely. AWS Secrets Manager helps you protect secrets needed to access your applications, services, and IT resources. The service enables you to easily rotate, manage, and retrieve database credentials, API keys, and other secrets throughout their lifecycle.

AWS Key Management Service and AWS Secrets Manager are primarily classified as "Data Security Services" and "Secrets Management" tools respectively.

Get Advice from developers at your company using StackShare Enterprise. Sign up for StackShare Enterprise.
Learn More
Pros of AWS Key Management Service
Pros of AWS Secrets Manager
  • 5
    Integrated with AWS CloudTrail
  • 4
    Backed by Amazon
  • 4
    KMS
  • 0
    Free
  • 5
    Managed Service

Sign up to add or upvote prosMake informed product decisions

What is AWS Key Management Service?

AWS Key Management Service (KMS) is a managed service that makes it easy for you to create and control the encryption keys used to encrypt your data, and uses Hardware Security Modules (HSMs) to protect the security of your keys. AWS Key Management Service is integrated with other AWS services including Amazon EBS, Amazon S3, and Amazon Redshift. AWS Key Management Service is also integrated with AWS CloudTrail to provide you with logs of all key usage to help meet your regulatory and compliance needs.

What is AWS Secrets Manager?

AWS Secrets Manager helps you protect secrets needed to access your applications, services, and IT resources. The service enables you to easily rotate, manage, and retrieve database credentials, API keys, and other secrets throughout their lifecycle.

Need advice about which tool to choose?Ask the StackShare community!

What companies use AWS Key Management Service?
What companies use AWS Secrets Manager?
See which teams inside your own company are using AWS Key Management Service or AWS Secrets Manager.
Sign up for StackShare EnterpriseLearn More

Sign up to get full access to all the companiesMake informed product decisions

What tools integrate with AWS Key Management Service?
What tools integrate with AWS Secrets Manager?

Sign up to get full access to all the tool integrationsMake informed product decisions

Blog Posts

May 21 2020 at 12:02AM

Rancher Labs

KubernetesAmazon EC2Grafana+12
4
1352
What are some alternatives to AWS Key Management Service and AWS Secrets Manager?
Azure Key Vault
Secure key management is essential to protect data in the cloud. Use Azure Key Vault to encrypt keys and small secrets like passwords that use keys stored in hardware security modules (HSMs). For more assurance, import or generate keys in HSMs, and Microsoft processes your keys in FIPS 140-2 Level 2 validated HSMs (hardware and firmware). With Key Vault, Microsoft doesn’t see or extract your keys. Monitor and audit your key use with Azure logging—pipe logs into Azure HDInsight or your security information and event management (SIEM) solution for more analysis and threat detection.
F5
It powers apps from development through their entire life cycle, so our customers can deliver differentiated, high-performing, and secure digital experiences.
OneTrust
A platform to help organizations be more trusted, and operationalize privacy, security, data governance, and compliance programs.
IBM QRadar
It is an enterprise security information and event management (SIEM) product. It includes out-of-the-box analytics, correlation rules and dashboards to help customers address their most pressing security use cases — without requiring significant customization effort.
AWS CloudHSM
The AWS CloudHSM service allows you to protect your encryption keys within HSMs designed and validated to government standards for secure key management. You can securely generate, store, and manage the cryptographic keys used for data encryption such that they are accessible only by you. AWS CloudHSM helps you comply with strict key management requirements without sacrificing application performance.
See all alternatives