It's as my topic title states, Genesys Cloud provides a mechanism now to use an AWS Symmetric Key to further encrypt conversation data. There is a page that describes how to configure it - Use an AWS KMS symmetric key for conversations - Genesys Cloud Resource Center. But I am struggling to find any resource that describes how it is done. Does it work like the AWS Symmetric key encryption for call recordings, where the AWS symmetric key configured is basically an envelope key for the DEK used to encrypt the recordings? The recording encryption method is well explained in Recording encryption key overview - Genesys Cloud Resource Center.
I am trying to find similar info for the conversation data encryption but am struggling to. Can anyone help with this at all? Additionally, I cannot tell if anything needs to be built into Architect in order to use the AWS KMS key to encrypt conversation data, or if this is meant to just work automatically as soon as the key is enabled. When we tried to break this by disabling the KMS key, I had expected to see old conversation data that was encrypted by the KMS key to stop being displayed as decryption should have failed. However, this wasn't the case, which is leading me to believe that an additional step is needed to encrypt the data using the key.
Any help with this would be appreciated.