EncryptionConfiguration

Configuration for encrypting workflow data at rest and in transit. Amazon Managed Workflows for Apache Airflow Serverless provides comprehensive encryption capabilities to protect sensitive workflow data, parameters, and execution logs. When using customer-managed keys, the service integrates with AWS AWS KMS to provide fine-grained access control and audit capabilities. Encryption is applied consistently across the distributed execution environment including task containers, metadata storage, and log streams.

Contents

Type

The type of encryption to use. Values are AWS_MANAGED_KEY (AWS manages the encryption key) or CUSTOMER_MANAGED_KEY (you provide a KMS key).

Type: String

Valid Values: AWS_MANAGED_KEY | CUSTOMER_MANAGED_KEY

Required: Yes

KmsKeyId

The ID or ARN of the AWS KMS key to use for encryption. Required when Type is CUSTOMER_MANAGED_KEY.

Type: String

Required: No

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following:

• AWS SDK for C++

• AWS SDK for Java V2

• AWS SDK for Ruby V3