undefined | Better HN

0 pointsremixz3y ago0 comments

You've got it right! The KMS keys used to encrypt sensitive data are generated per customer, and the majority of our engineering team cannot access any sensitive production data at all. In theory, it would only be the select team members with privileged access that could access it, but as you mentioned, it would be logged in CloudTrail. We also have GuardDuty enabled, and it would likely alert on anomalous activity.

Personally, I think we could do a better job explaining our security model in our FAQ. I'll bring it up with the team.

0 comments

iLoveOncall3y ago

> Our employees do not have access to the private key to decrypt sensitive data.

So this is literally a lie?

j / k navigate · click thread line to collapse

0 pointsremixz3y ago0 comments

Personally, I think we could do a better job explaining our security model in our FAQ. I'll bring it up with the team.

0 comments

iLoveOncall3y ago

> Our employees do not have access to the private key to decrypt sensitive data.

So this is literally a lie?

j / k navigate · click thread line to collapse