Free AWS Certified Developer Associate DVA-C02 Practice Question

The correct service for managing and sharing encryption keys is Key Management Service (KMS), which allows organizations to create and manage encryption keys and control their use across AWS services and in applications. The KMS supports sharing of Customer Managed Keys (CMKs) with different accounts, which is necessary for applications that need to utilize encrypted data in a multi-account environment. Through the use of resource-based policies in conjunction with KMS, users can grant permissions to other accounts to allow them to use specific CMKs for encrypting and decrypting data.