What is CMK encryption?
Learn what CMK encryption is, as well as the benefits and who's eligible to use it.
Use Customer-managed keys (CMK) encryption
CMK gives greater control over encryption keys to protect your Atlassian Cloud data. Currently you can create only one CMK encryption (policy) per organization for all data in scope for new sites only. Customers not using BYOK can enroll in CMK. BYOK customers will eventually be migrated to CMK.
Set up AWS account and create a KMS key policy
Learn what you need to set up in AWS before using CMK encryption.
Enroll in CMK encryption policy
Understand how to enroll in CMK encryption policy to start encrypting your Atlassian apps.
Set up CMK-enabled Atlassian apps
Learn what you need to provide us so we can create the CMK encryption for you.
Update AWS KMS key policy for your Atlassian cloud organization
Learn how to update AWS KMS key policy for your Atlassian cloud organization.
Revoke Atlassian access to your KMS encryption keys
See the steps you need to take to revoke access to your encryption keys.
Restore access to your CMK encryption keys
See the steps you need to take to restore your access to encryption keys after revocation.
Request CMK re-encryption
See the steps you need to take to re-encrypt data on your existing CMK-encrypted apps.
Was this helpful?
Still need help?
The Atlassian Community is here for you.