🐾Where to store secret data?🐾

❓Wondering where to store your secret data, like credentials or API keys? Let's compare two options:

🛠️AWS Secrets Manager

🔹Cross-account access: Yes
🔹Cross-region replication: Out of the box support
🔹Keys rotation: Automatic rotation integrated with RDS, Redshift and DynamoDB
🔹Data encryption: Enabled by default, you cannot store unencrypted secrets
🔹Versioning: Multiple versions can exist at the same time
🔹Storage pricing: $0.40 per secret per month
🔹Item size: Up to 65’536 bytes
🔹Storage limit: 500'000 secrets per region per account

🛠️AWS Systems Manager Parameter Store

🔹Cross-account access: No, you need to assume role in target account
🔹Cross-region replication: No out of the box support
🔹Keys rotation: No automatic key rotation
🔹Data encryption: Disabled by default
🔹Versioning: One version can exist at any given time
🔹Storage pricing: No additional charge for storage and standard throughput
🔹Item size: Standard Parameters - up to 4’096 bytes, and Advanced Parameters - up to 8’192 bytes
🔹Storage limit: 10'000 standard parameters per region per account

Take control of your secret data storage and make a confident decision that aligns with your needs. Share your thoughts and experiences in the comments 🤓

---

If you like this post, you can share APAWS newsletter with friends: