How to use Customer-Managed Encryption Keys (CMEK) and Cloud KMS with Google Cloud Storage
HTML-код
- Опубликовано: 5 ноя 2024
- In this lab demo, we're going to learn how to manage our own encryption keys for Google Cloud Storage. Objects in Cloud Storage are always encrypted by default, usually using Google-managed keys. However, we may want to manage our own keys for encryption. We can do this using the Cloud Key Management Service (Cloud KMS). Note, you can also provide your own keys, which are managed externally using other tools. See our other videos on Customer-Supplied Encryption Keys for more details.
In this video, we will create keys and keyrings in Cloud KMS, set a default Customer-Managed Encryption Key (CMEK) for a Cloud Storage bucket, encrypt objects with our own managed key, and observe how we can rotate managed keys.
Learn more about Cloud KMS here: cloud.google.c... and how to supply CMEKs for Cloud Storage here: cloud.google.c...
Let us know in the comments if you have any follow up questions, or what future lab demos you would like to see us record!
Find out more about Appsbroker Academy at www.appsbroker...
#cloud #googlecloud #googlecloudplatform #cloudtraining #encryption #security
I just watched this video and already loving it :) This is just the usecase that I was looking for and this vid was spot on. Very knowledgeable :)
0:21