Question

在AWS控制台中，DynamoDB表的加密为“默认” ...查看文档，该表可能使用AWS拥有的CMK（客户管理的密钥）进行了加密... 但是有没有办法确定...该表已加密？如果可以，则采用哪种加密方式？

“描述表”命令不输出有关加密的任何信息。

C:\Users\test>aws dynamodb describe-table --profile snpp --table-name mydynamodbtable

{
    "Table": {
        "TableArn": "arn:aws:dynamodb:us-east-1:902919223373:table/mydynamodbtable",
        "AttributeDefinitions": [
            {
                "AttributeName": "hashKey",
                "AttributeType": "S"
            },
            {
                "AttributeName": "rangeKey",
                "AttributeType": "S"
            }
        ],
        "ProvisionedThroughput": {
            "NumberOfDecreasesToday": 0,
            "WriteCapacityUnits": 100,
            "ReadCapacityUnits": 400
        },
        "TableSizeBytes": 45160931,
        "TableName": "mydynamodbtable",
        "TableStatus": "ACTIVE",
        "TableId": "0e75b671-75bf-41ac-9cd1-f75ee3f787ca",
        "KeySchema": [
            {
                "KeyType": "HASH",
                "AttributeName": "hashKey"
            },
            {
                "KeyType": "RANGE",
                "AttributeName": "rangeKey"
            }
        ],
        "ItemCount": 206363,
        "CreationDateTime": 1529442343.583
    }
}

Answer 1

https://aws.amazon.com/about-aws/whats-new/2018/11/amazon-dynamodb-encrypts-all-customer-data-at-rest/

根据此2018年11月15日的公告，除AWS GovCloud美国西部，美国东部，中国北京和中国宁夏地区外，所有静态DynamoDB表数据均已加密。

dynamodb记录表加密状态

1 个答案: