KMS key ID to use for the default encryption.
Server-side encryption algorithm to use for the default encryption. Valid values are aws: kms or AES256.
aws: kms
AES256