About encryption at rest of a OpenSearch domain

I have a general question regarding the domain encryption. Currently, I know that it is an option to turn on the data encryption at rest and provide a KMS key ID when creating a OpenSearch domain.

Now I am dealing with a scenario which pushes me to explore using different KMS key IDs for different datasets (which will be indexed separately) in same domain. Does anyone know whether it is something in OpenSearch roadmap already or we don’t expect the support for that in near future.

Hi @Dengke - thanks for bringing your question here.

If you’re referring to the managed service, I don’t think there’s a roadmap that is publicly available.

However, OpenSearch the community-driven, Apache 2.0-licensed open source search and analytics suite has a roadmap that anyone can view and ask questions about available here:

I’ll see if I can find someone who can help you regardless. :slight_smile:


1 Like