Bibliography - AWS Key Management Service


For information about the AWS Key Management Service HSMs, go to the NIST Computer Security Resource Center Cryptographic Module Validation Program search page and search for AWS Key Management Service HSM.

Amazon Web Services, General Reference (Version 1.0), “Signing AWS API Request,”

Amazon Web Services, “What is the AWS Encryption SDK,”

Federal Information Processing Standards Publications, FIPS PUB 180-4. Secure Hash Standard, August 2012. Available from

Federal Information Processing Standards Publication 197, Announcing the Advanced Encryption Standard (AES), November 2001. Available from

Federal Information Processing Standards Publication 198-1, The Keyed-Hash Message Authentication Code (HMAC), July 2008. Available from

NIST Special Publication 800-52 Revision 2, Guidelines for the Selection, Configuration, and Use of Transport Layer Security (TLS) Implementations, August 2019.

PKCS#1 v2.2: RSA Cryptography Standard (RFC 8017), Internet Engineering Task Force (IETF), November 2016.

Recommendation for Block Cipher Modes of Operation: Galois/Counter Mode (GCM) and GMAC, NIST Special Publication 800-38D, November 2007. Available from

Recommendation for Block Cipher Modes of Operation: The XTS-AES Mode for Confidentiality on Storage Devices, NIST Special Publication 800-38E, January 2010. Available from

Recommendation for Key Derivation Using Pseudorandom Functions, NIST Special Publication 800-108, October 2009, Available from

Recommendation for Key Management - Part 1: General (Revision 5), NIST Special Publication 800-57A, May 2020, Available from

Recommendation for Pair-Wise Key Establishment Schemes Using Discrete Logarithm Cryptography (Revised), NIST Special Publication 800-56A Revision 3, April 2018. Available from

Recommendation for Random Number Generation Using Deterministic Random Bit Generators, NIST Special Publication 800-90A Revision 1, June 2015, Available from

SEC 2: Recommended Elliptic Curve Domain Parameters, Standards for Efficient Cryptography Group, Version 2.0, 27 January 2010.

Use of Elliptic Curve Cryptography (ECC) Algorithms in Cryptographic Message Syntax (CMS), Brown, D., Turner, S., Internet Engineering Task Force, July 2010,

X9.62-2005: Public Key Cryptography for the Financial Services Industry: The Elliptic Curve Digital Signature Algorithm (ECDSA), American National Standards Institute, 2005.