A key, or bucket key, is a unique data key for objects in a bucket.

Keys avoid the need for additional KMS requests to complete encryption and to reduce request traffic.

You can create an unlimited number of keys for your account. This allows you to generate unique key pairs for each user or program. So, if it’s necessary to revoke specific access in the future, you can remove the keys or reset the secret without affecting other users.