What is a Customer Master Key that is created and managed by AWS services integrated with KMS called?

A Customer Master Key (CMK) that is created and managed by AWS services integrated with AWS Key Management Service (KMS) is referred to as an AWS Managed CMK. This type of key is automatically generated and managed by AWS, streamlining the key management process for users. It allows services that integrate with KMS, such as Amazon S3, Amazon EBS, and others, to perform encryption without requiring customers to create or manage keys manually.

By using AWS Managed CMKs, customers benefit from automated key lifecycle management, security best practices adopted by AWS, and seamless integration with other AWS services. This reduces the operational overhead for security and compliance, allowing businesses to focus on their core applications and services.

In contrast, the other options do not pertain to key management in the context of KMS. Amazon GuardDuty is a threat detection service, while tokenization refers to a method of securing sensitive data by replacing it with tokens. AWS Shield Advanced is a managed DDoS protection service. These are all distinct services with specific functions that do not relate to the management of encryption keys.