- Популярные видео
- Авто
- Видео-блоги
- ДТП, аварии
- Для маленьких
- Еда, напитки
- Животные
- Закон и право
- Знаменитости
- Игры
- Искусство
- Комедии
- Красота, мода
- Кулинария, рецепты
- Люди
- Мото
- Музыка
- Мультфильмы
- Наука, технологии
- Новости
- Образование
- Политика
- Праздники
- Приколы
- Природа
- Происшествия
- Путешествия
- Развлечения
- Ржач
- Семья
- Сериалы
- Спорт
- Стиль жизни
- ТВ передачи
- Танцы
- Технологии
- Товары
- Ужасы
- Фильмы
- Шоу-бизнес
- Юмор
Using Customer Supplied Encryption Keys with Cloud Storage
Overview
Cloud Storage always encrypts your data on the server side with a Google-managed encryption key, before it is written to disk, at no additional charge. As an alternative to a Google-managed server-side encryption key, you can choose to provide your own AES-256 key, encoded in standard Base64. This key is known as a customer-supplied encryption key.
In this lab, you will configure customer-supplied encryption keys (CSEK) for Cloud Storage. Files will then be uploaded into a storage bucket. You will then generate a new encryption key and rotate CSEK keys.
Cloud Storage does not permanently store your key on Google's servers or otherwise manage your key. Instead, you provide your key for each Cloud Storage operation, and your key is purged from Google's servers after the operation is complete. Cloud Storage stores only a cryptographic hash of the key so that future requests can be validated against the hash.
Your key cannot be recovered from this hash, and the hash cannot be used to decrypt your data.
Objectives
In this lab, you wil learn how to perform the following tasks:
- Configure CSEK for Cloud Storage.
- Utilize CSEK to encrypt files in Cloud Storage.
- Delete local files from Cloud Storage and verify encryption.
- Rotate your encryption keys without downloading and re-uploading data.
#gcp #googlecloud #qwiklabs #learntoearn
Видео Using Customer Supplied Encryption Keys with Cloud Storage канала Backyard Techmu by Adrianus Yoga
Cloud Storage always encrypts your data on the server side with a Google-managed encryption key, before it is written to disk, at no additional charge. As an alternative to a Google-managed server-side encryption key, you can choose to provide your own AES-256 key, encoded in standard Base64. This key is known as a customer-supplied encryption key.
In this lab, you will configure customer-supplied encryption keys (CSEK) for Cloud Storage. Files will then be uploaded into a storage bucket. You will then generate a new encryption key and rotate CSEK keys.
Cloud Storage does not permanently store your key on Google's servers or otherwise manage your key. Instead, you provide your key for each Cloud Storage operation, and your key is purged from Google's servers after the operation is complete. Cloud Storage stores only a cryptographic hash of the key so that future requests can be validated against the hash.
Your key cannot be recovered from this hash, and the hash cannot be used to decrypt your data.
Objectives
In this lab, you wil learn how to perform the following tasks:
- Configure CSEK for Cloud Storage.
- Utilize CSEK to encrypt files in Cloud Storage.
- Delete local files from Cloud Storage and verify encryption.
- Rotate your encryption keys without downloading and re-uploading data.
#gcp #googlecloud #qwiklabs #learntoearn
Видео Using Customer Supplied Encryption Keys with Cloud Storage канала Backyard Techmu by Adrianus Yoga
Комментарии отсутствуют
Информация о видео
20 мая 2024 г. 17:52:46
00:17:28
Другие видео канала
Setting Up Network and HTTP Load Balancers ACE
Analyze BigQuery Usage with Log Analytics GSP1250
Automate GKE Configurations with Config Sync and Policy Controller GSP1241
Manage Terraform State GSP752
JAVAMS02 Configuring and Connecting to Cloud SQL
Google Calendar Getting Started GSP466
Virtual Private Networks VPN
Resizing a Google Cloud NetApp Volumes volume GSP1310
Pod Deployment in GKE Infrastructure GSP488
Arcade Chatbot Interactive Olympic Swimming Guide bot arc137-genai
Configuring Vector Search in Spanner GSP1288
Deploying GKE Autopilot Clusters
![[2024] It Speaks Create Synthetic Speech Using Text to Speech GSP222](https://i.ytimg.com/vi/yazyoq_K_74/default.jpg)
[2024] It Speaks Create Synthetic Speech Using Text to Speech GSP222
Classify Images of Clouds with Vertex AI GSP223
Media CDN: Qwik Start GSP1044
Set Up Network and Application Load Balancers GSP007
Cloud NGFW Migrate VPC Firewall Rules No Network Tags GSP608
Use Vertex AI Studio for Healthcare GSP1252
Introduction to Dart GSP1013
A Tour of Cloud Networking GSP1211
