Our Blog

Amazon Cognito now supports customer managed key for encryption at rest

Published
June 23, 2026
https://aws.amazon.com/about-aws/whats-new/2026/06/amazon-cognito-customer-managed-key

Amazon Cognito Customer Managed Keys Support

Amazon Cognito now supports customer managed keys in AWS Key Management Service (KMS) for encrypting user pool data at rest. This feature allows you to have full control over the encryption keys, aligning with your organization's data governance objectives.

What to do

  • Create and manage customer managed keys in AWS KMS.
  • Configure keys when creating a new user pool or updating an existing one.
  • Use AWS CloudTrail to monitor and audit key usage.

Customer managed keys are available in Essentials and Plus tiers at no additional costs. Standard AWS KMS charges apply.

Source: AWS release notes




If you need further guidance on AWS, our experts are available at AWS@westloop.io. You may also reach us by submitting the Contact Us form.

Follow our blog

Get the latest insights and advice on AWS services from our experts.

By clicking Sign Up you're confirming that you agree with our Terms and Conditions.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Related posts

Check out other insights from the team at West Loop Strategy.

View all
https://aws.amazon.com/about-aws/whats-new/2026/01/aws-iot-device-management-wifi-simple-setup/

AWS IoT Device Management launches Wi-Fi Simple Setup for managed integrations

AWS IoT Device Management now offers Wi-Fi Simple Setup (WSS) for managed integrations, enabling developers to implement simplified Wi-Fi provisioning in Internet of Things (IoT) solutions
Read more
https://aws.amazon.com/about-aws/whats-new/2026/06/gdc-s3tables-simplified-permissions-in-aws-govcloud/

Simplified permissions for Amazon S3 Tables and Iceberg materialized views are now available in AWS GovCloud (US) Regions

AWS Glue Data Catalog now supports AWS IAM-based authorization for Amazon S3 Tables and Apache Iceberg materialized views
Read more
https://aws.amazon.com/about-aws/whats-new/2025/12/amazon-ses-vpc-api-endpoints/

Amazon SES adds VPC support for API endpoints

Today, Amazon Simple Email Service (SES) added support for accessing SES API endpoints through Virtual Private Cloud (VPC) endpoints
Read more
View all