Bring your own keys. Keep control of encryption. Audit every operation.
KMS
Some organizations need to own the encryption, not just trust that it happens. Metorial backs secret storage with AWS KMS and lets you use your own KMS keys. The credentials stored in Metorial are encrypted with keys you control, adding a layer of security on top of secure storage, without you having to run the storage yourself.
Bring your own AWS KMS keys to encrypt the secrets stored in Metorial. Encryption is under your control.
Customer-managed encryption provides an additional layer of protection for sensitive data on top of secure storage.
There's full observability and audit logging for all operations involving secrets protected by KMS.
What KMS gives you
Bring your own keys. Keep control of encryption. Audit every operation.
Answers to common questions about kms and how they fit into governed AI agent infrastructure.