Review

In this section, you created a file that contained secrets and encrypted the file using KMS. Then you configured an enclave to automatically download and decrypt the file using the built-in AWS Nitro integration with the AWS KMS service.

You learned how easy it is to use the AWS Nitro Attestation capabilities to ensure that your secrets are securely distributed to authorized enclaves, and prevent any other entities from accessing those secrets.