The AWS Key Management Service (KMS) is a managed service that enables the creation and control of customer master keys (CMKs) - the encryption keys used to encrypt your data. AWS KMS is integrated with most of the other AWS services that encrypt your data. AWS KMS is also integrated with AWS CloudTrail to log usage of your CMKs for auditing, regulatory, and compliance purposes.