{ "Sid": "Some_ID","Effect": "Allow","Principal": { "Service": "sqs.amazonaws.com" },"Action": [ "kms:GenerateDataKey","kms:Decrypt" ],"Resource": "*" }
消息应该加密给未经授权的用户,并在授权用户/队列的 sqs 中自动解密。
gusto2:- 不同之处在于底层存储中的数据将被加密,但客户端本身不会看到。