How are my persisted long-term AWS security credentials in Identity Federation for AWS secured against unauthorized usage?

The persisted long-term AWS security credentials (comprised of an Access Key Id and a Secret Access Key) are stored in the database encrypted with a 128-bit Advanced Encryption Standard (AES) private secret key, which is stored on the file system and unique per application instance (e.g. Jira installation). This means you can loose either your database or your file system without compromising your AWS accounts right away.