customer-supplied encryption keys (CSEK)
GPTKB entity
Statements (20)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:encryption_key_management_method
|
| gptkbp:alternativeTo |
gptkb:customer-managed_encryption_keys_(CMEK)
Google-managed encryption keys |
| gptkbp:documentation |
https://cloud.google.com/docs/security/encryption/default-encryption#csek
|
| gptkbp:enables |
customer control over encryption keys
|
| gptkbp:keyFormat |
256-bit AES key
|
| gptkbp:notStoredBy |
gptkb:Google
|
| gptkbp:requires |
customer to manage key lifecycle
customer to provide key with each request |
| gptkbp:riskFactor |
data inaccessibility if key is incorrect
data loss if key is lost |
| gptkbp:supportedBy |
gptkb:Google_Cloud_Storage
gptkb:Google_Compute_Engine gptkb:Google_Persistent_Disk |
| gptkbp:supportsAlgorithm |
symmetric key encryption
|
| gptkbp:usedFor |
data encryption
|
| gptkbp:usedIn |
gptkb:Google_Cloud_Platform
|
| gptkbp:bfsParent |
gptkb:Cloud_Key_Management_Service
|
| gptkbp:bfsLayer |
6
|
| https://www.w3.org/2000/01/rdf-schema#label |
customer-supplied encryption keys (CSEK)
|