Security in Amazon Secrets Manager
Security at Amazon is the highest priority. As an Amazon customer, you benefit from a data center and network architecture built to meet the requirements of the most security-sensitive organizations.
You and Amazon share the responsibility for security. The shared responsibility
model
-
Security of the cloud – Amazon is responsible for protecting the infrastructure that runs Amazon services in the Amazon Cloud. Amazon also provides you with services you can use securely. Third-party auditors regularly test and verify the effectiveness of our security as part of the Amazon Compliance Programs.
To learn about the compliance programs that apply to Amazon Secrets Manager, see Amazon Services in Scope by Compliance Program . -
Security in the cloud – Your Amazon service determines your responsibility. You are also responsible for other factors including the sensitivity of your data, your company’s requirements, and applicable laws and regulations.
For more resources, see Security Pillar - Amazon Well-Architected Framework.
Topics
- Mitigate the risks of using the Amazon CLI to store your Amazon Secrets Manager secrets
- Authentication and access control for Amazon Secrets Manager
- Data protection in Amazon Secrets Manager
- Secret encryption and decryption in Amazon Secrets Manager
- Infrastructure security in Amazon Secrets Manager
- Using an Amazon Secrets Manager VPC endpoint
- Control API access with IAM policies
- Resiliency in Amazon Secrets Manager
- Post-quantum TLS