Global KMS keys and secrets in AWS

In this post I want to give you a brief introduction on how to deploy KMS keys and secrets in Secret Manager across multiple regions. We’ll do so by making use of replication to minimize waste and prevent repeating ourselves. Multi-region KMS key July last year AWS introduced multi-region KMS keys. A new capability that lets you replicate keys from one region into another. With multi-region keys, you can more easily move encrypted data between regions without having to decrypt and re-encrypt with different keys in each region....

January 23, 2022 · 4 min

Latency based routing in AWS

Distance affects performance, going further away latency can easily reach a third or half of a second for a round-trip. This could be a bummer when you serve customers globally. Luckily there’s.. Global Accelerator Global Accelerator solves a few common DNS problems1 as it’s not relying on IP address caches. It has 2 static IPv4 addresses as a single entry-point for users to connect through and there’s no DNS configuration for you to maintain....

November 14, 2021 · 6 min

Behind the scenes, Lambda

Writing code and deploying it to AWS Lambda is as easy as baking a cake (depending on the type of cake). Lambda performs the heavy lifting for you, from provisioning to scaling. But where is the magic happening and how does it actually work under the hood? Lets find out together! Lambda is split into a control plane and data plane. Each plane is responsible for a specific set of activities in the service....

June 8, 2021 · 10 min