AWS – Amazon EventBridge Archive and Replay now supports Customer Managed KMS Keys

Amazon EventBridge Archive and Replay now supports AWS Key Management Service (KMS) customer managed keys for encrypting archived events. This expands your encryption options by letting you choose between default AWS owned keys for simpler, automated data protection or customer managed keys to help meet your organization’s specific security and governance requirements.

Amazon EventBridge Event Bus receives and routes events between your applications, SaaS applications, and AWS services. The Archive and Replay feature enhances this capability by allowing you to store events from an event bus and replay them later, helping you build more durable event-driven applications. You can archive events using custom filters, set flexible retention periods, and replay events to specific rules within your chosen time ranges on the original event bus. With customer managed KMS keys, you can help meet your organization’s compliance and governance requirements for encrypting archived events and use AWS CloudTrail to audit and track encryption key usage.

Customer managed key support for EventBridge Archive and Replay is available in all AWS Regions where the Archive and Replay feature is offered. Using this feature incurs no additional cost, but standard AWS KMS pricing applies.

To get started, refer to the EventBridge documentation. For details about customer managed keys, see the AWS Key Management Service documentation.

Read More for the details.