A Key Management Service (KMS) is vitally important to provide secure hosting and cryptography services to help you encrypt and protect sensitive PII from clients with keys. Hydrogen integrates major cloud based KMS solutions into our integration framework, making them compatible with both our Atom centralized fintech library, and Molecule decentralized library.
Amazon Web Services (AWS) offers a secret management service to help clients manage credentials in a secure cloud-based environment. Clients can store and provision keys using the AWS cloud console, and manage key access using IAM roles associated with AWS user pools.
SETUP FOR AWS SECRETS MANAGER
To create a user on the AWS Secrets Manager, you only need your AWS access key. Your AWS access key consists of an access key ID and a secret access key. We advise against using your root access key, and instead creating a limited-use access key for an IAM user.
1. Download the AWS CLI, enter your terminal and run. You will be prompted to enter your root user Access Key ID, Secret Access Key, and Default Region and Output Format.
2. Create a new IAM user. This will return an access key, which consists of an access key ID and a secret access key.
aws iam create-user --user-name HydrogenApplicationUser
3. Record your access key, and enter the access key ID and secret access key on the vendor credentials page in your Hydrogen Integration Settings Dashboard. Your Hydrogen application will now have access to all privileges granted to your IAM user.