# Cloud HSM
#aws #cloud #encryption
Another service in AWS which allows management of Encryption keys. It is a cloud based hardware security module (HSM). Create and use your own encryption keys on AWS Cloud. Manage keys using FIPS 140-2 Level 3 validated HSMs. It runs in your VPC.
KMS Cloud be configured to use HSM cluster as custom key store.
It is a managed service and automatically scales.
Retains control of your encryption keys. you control access and is not accessible to anyone else including AWS.
# Cloud HSM vs AWS KMS
