As we conclude, here is a list of questions for you to test your knowledge regarding the material covered in this chapter. You will find the answers in the Assessments section of the Appendix:
- True or false: Asymmetric encryption uses a single key to encrypt and decrypt data.
- Which component is the main building block of the KMS service as it contains the key material used for both encrypting and decrypting data?
- There are three different types of CMKs used by KMS that you need to be familiar with: AWS-owned, customer-managed, and which other?
- Which component of KMS is used to determine who can use the key to perform cryptographic operations, such as encrypt, decrypt, and GenerateDataKey, in addition to who can administer the CMK?
- Which AWS service offers the ability to maintain a level of security protection for any API keys, in addition to other secrets?