A popular method for generating key pairs and encrypting data is the RSA algorithm and cryptosystem.įor RSA key pairs, calculating the private key from the public key is seen as computationally infeasible, and therefore RSA key pairs can be used for both authentication and encryption. This system has a useful property, which is that anything encrypted with a public key can only be decrypted by the corresponding private key.
Each pair consists of a public key, which can be seen or accessed by anyone, and a private key, which can be accessed only by authorized people. This blog post discusses how you can use AWS Key Management Service (AWS KMS) RSA public keys on end clients or devices and encrypt data, then subsequently decrypt data by using private keys that are secured in AWS KMS.Īsymmetric cryptography is a cryptographic system that uses key pairs. October 28, 2022: This blog post has been updated to reflect that CBC has changed to CTR, as well as a few more modifications.