vpruthi/doc-exports
1
0
Fork 0
forked from docs/doc-exports
Code Pull Requests Activity
doc-exports/docs/obs/s3api/en-us_topic_0125560282.html
Jawei, Li 1a4c1a720a OBS s3api 2.0.38.SP5 
Reviewed-by: Hasko, Vladimir <vladimir.hasko@t-systems.com>
Co-authored-by: Jawei, Li <lijiawei5@huawei.com>
Co-committed-by: Jawei, Li <lijiawei5@huawei.com>
2022-11-16 14:51:13 +00:00

108 lines
9.0 KiB
HTML
Raw Blame History

<a name="EN-US_TOPIC_0125560282"></a><a name="EN-US_TOPIC_0125560282"></a>
<h1 class="topictitle1">SSE-C</h1>
<div id="body1463023869053"><p id="EN-US_TOPIC_0125560282__p37896159113316">In SSE-C mode, OBS uses the keys and MD5 values provided by customers for server-side encryption.</p>
<p id="EN-US_TOPIC_0125560282__p5521117113316">OBS does not store your encryption keys. If you lost your encryption keys, you lost the objects. Six headers are added to support SSE-C.</p>
<p id="EN-US_TOPIC_0125560282__p49690056113316"><a href="#EN-US_TOPIC_0125560282__table44557321113316">Table 1</a> lists headers that are mandatory when you use SSE-C to encrypt objects.</p>
<div class="tablenoborder"><a name="EN-US_TOPIC_0125560282__table44557321113316"></a><a name="table44557321113316"></a><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0125560282__table44557321113316" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Mandatory headers in SSE-C mode</caption><thead align="left"><tr id="EN-US_TOPIC_0125560282__row239914398"><th align="left" class="cellrowborder" valign="top" width="26.26%" id="mcps1.3.4.2.3.1.1"><p id="EN-US_TOPIC_0125560282__p839915390">Header</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="73.74000000000001%" id="mcps1.3.4.2.3.1.2"><p id="EN-US_TOPIC_0125560282__p639181173919">Description</p>
</th>
</tr>
</thead>
<tbody><tr id="EN-US_TOPIC_0125560282__row62234724113316"><td class="cellrowborder" valign="top" width="26.26%" headers="mcps1.3.4.2.3.1.1 "><p id="EN-US_TOPIC_0125560282__p7847870113316">x-amz-server-side-encryption-customer-algorithm</p>
</td>
<td class="cellrowborder" valign="top" width="73.74000000000001%" headers="mcps1.3.4.2.3.1.2 "><p id="EN-US_TOPIC_0125560282__p31697753113316">Indicates the algorithm used to encrypt an object. The header is used in SSE-C mode.</p>
<p id="EN-US_TOPIC_0125560282__p127523417618">Example:</p>
<p id="EN-US_TOPIC_0125560282__p16844326113316">x-amz-server-side-encryption-customer-algorithm:AES256</p>
</td>
</tr>
<tr id="EN-US_TOPIC_0125560282__row17381213113316"><td class="cellrowborder" valign="top" width="26.26%" headers="mcps1.3.4.2.3.1.1 "><p id="EN-US_TOPIC_0125560282__p65700976113316">x-amz-server-side-encryption-customer-key</p>
</td>
<td class="cellrowborder" valign="top" width="73.74000000000001%" headers="mcps1.3.4.2.3.1.2 "><p id="EN-US_TOPIC_0125560282__p20178877113316">Indicates the key used to encrypt an object. The header is used in SSE-C mode and it is a base64-encoded 256-bit or 512-bit key.</p>
<p id="EN-US_TOPIC_0125560282__p66180292399">Example:</p>
<p id="EN-US_TOPIC_0125560282__p14819361262">x-amz-server-side-encryption-customer-key:K7QkYpBkM5+hcs27fsNkUnNVaobncnLht/rCB2o/9Cw=</p>
</td>
</tr>
<tr id="EN-US_TOPIC_0125560282__row23876330113316"><td class="cellrowborder" valign="top" width="26.26%" headers="mcps1.3.4.2.3.1.1 "><p id="EN-US_TOPIC_0125560282__p54934559113316">x-amz-server-side-encryption-customer-key-MD5</p>
</td>
<td class="cellrowborder" valign="top" width="73.74000000000001%" headers="mcps1.3.4.2.3.1.2 "><p id="EN-US_TOPIC_0125560282__p20514309113316">Indicates the MD5 value of the key used to encrypt an object. The header is used in SSE-C mode and it is a base64-encoded 128-bit MD5 value of customer key. The MD5 value is used to check whether any error occurs during the transmission of the key.</p>
<p id="EN-US_TOPIC_0125560282__p33021432203915">Example:</p>
<p id="EN-US_TOPIC_0125560282__p17705581362">x-amz-server-side-encryption-customer-key-MD5:4XvB3tbNTN+tIEVa0/fGaQ==</p>
</td>
</tr>
</tbody>
</table>
</div>
<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0125560282__table2731902311349" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Interfaces to which the newly added headers apply</caption><thead align="left"><tr id="EN-US_TOPIC_0125560282__row6526771511349"><th align="left" class="cellrowborder" valign="top" width="100%" id="mcps1.3.5.2.2.1.1"><p id="EN-US_TOPIC_0125560282__p5219358711349">Interface</p>
</th>
</tr>
</thead>
<tbody><tr id="EN-US_TOPIC_0125560282__row6693103611349"><td class="cellrowborder" valign="top" width="100%" headers="mcps1.3.5.2.2.1.1 "><p id="EN-US_TOPIC_0125560282__p5270480511349">PUT Object</p>
</td>
</tr>
<tr id="EN-US_TOPIC_0125560282__row458119711349"><td class="cellrowborder" valign="top" width="100%" headers="mcps1.3.5.2.2.1.1 "><p id="EN-US_TOPIC_0125560282__p3553264911349">POST Object</p>
</td>
</tr>
<tr id="EN-US_TOPIC_0125560282__row5135839211349"><td class="cellrowborder" valign="top" width="100%" headers="mcps1.3.5.2.2.1.1 "><p id="EN-US_TOPIC_0125560282__p6638907411349">PUT Object - Copy (the newly added headers apply to target objects)</p>
</td>
</tr>
<tr id="EN-US_TOPIC_0125560282__row6063076011349"><td class="cellrowborder" valign="top" width="100%" headers="mcps1.3.5.2.2.1.1 "><p id="EN-US_TOPIC_0125560282__p1214453811349">HEAD Object</p>
</td>
</tr>
<tr id="EN-US_TOPIC_0125560282__row4219198511349"><td class="cellrowborder" valign="top" width="100%" headers="mcps1.3.5.2.2.1.1 "><p id="EN-US_TOPIC_0125560282__p6210758811349">GET Object</p>
</td>
</tr>
<tr id="EN-US_TOPIC_0125560282__row2209738811349"><td class="cellrowborder" valign="top" width="100%" headers="mcps1.3.5.2.2.1.1 "><p id="EN-US_TOPIC_0125560282__p4505801211349">Initiate Multipart Upload</p>
</td>
</tr>
<tr id="EN-US_TOPIC_0125560282__row286892611349"><td class="cellrowborder" valign="top" width="100%" headers="mcps1.3.5.2.2.1.1 "><p id="EN-US_TOPIC_0125560282__p3105643511349">Upload Part</p>
</td>
</tr>
<tr id="EN-US_TOPIC_0125560282__row1107246511349"><td class="cellrowborder" valign="top" width="100%" headers="mcps1.3.5.2.2.1.1 "><p id="EN-US_TOPIC_0125560282__p2445443811349">Upload Part - Copy (the newly added headers apply to target parts)</p>
</td>
</tr>
</tbody>
</table>
</div>
<p id="EN-US_TOPIC_0125560282__p65252045113431"><a href="#EN-US_TOPIC_0125560282__table50397498113431">Table 3</a> lists three headers that are added for PUT Object - Copy and Upload Part - Copy interfaces to support source objects encrypted using SSE-C.</p>
<div class="tablenoborder"><a name="EN-US_TOPIC_0125560282__table50397498113431"></a><a name="table50397498113431"></a><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0125560282__table50397498113431" frame="border" border="1" rules="all"><caption><b>Table 3 </b>Headers</caption><thead align="left"><tr id="EN-US_TOPIC_0125560282__row101932046143919"><th align="left" class="cellrowborder" valign="top" width="26.26%" id="mcps1.3.7.2.3.1.1"><p id="EN-US_TOPIC_0125560282__p1019313469398">Header</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="73.74000000000001%" id="mcps1.3.7.2.3.1.2"><p id="EN-US_TOPIC_0125560282__p191938463398">Description</p>
</th>
</tr>
</thead>
<tbody><tr id="EN-US_TOPIC_0125560282__row46440433113431"><td class="cellrowborder" valign="top" width="26.26%" headers="mcps1.3.7.2.3.1.1 "><p id="EN-US_TOPIC_0125560282__p3578718113431">x-amz-copy-source-server-side-encryption-customer-algorithm</p>
</td>
<td class="cellrowborder" valign="top" width="73.74000000000001%" headers="mcps1.3.7.2.3.1.2 "><p id="EN-US_TOPIC_0125560282__p21440723113431">Indicates the algorithm used to decrypt a source object. The header is used in SSE-C mode.</p>
<p id="EN-US_TOPIC_0125560282__p58748785113431">Example: x-amz-copy-source-server-side-encryption-customer-algorithm:AES256</p>
</td>
</tr>
<tr id="EN-US_TOPIC_0125560282__row58977017113431"><td class="cellrowborder" valign="top" width="26.26%" headers="mcps1.3.7.2.3.1.1 "><p id="EN-US_TOPIC_0125560282__p12409079113431">x-amz-copy-source-server-side-encryption-customer-key</p>
</td>
<td class="cellrowborder" valign="top" width="73.74000000000001%" headers="mcps1.3.7.2.3.1.2 "><p id="EN-US_TOPIC_0125560282__p65611382113431">Indicates the key used to decrypt a source object. The header is used in SSE-C mode.</p>
<p id="EN-US_TOPIC_0125560282__p8162304408">Example:</p>
<p id="EN-US_TOPIC_0125560282__p53631534113431">x-amz-copy-source-server-side-encryption-customer-key:K7QkYpBkM5+hcs27fsNkUnNVaobncnLht/rCB2o/9Cw=</p>
</td>
</tr>
<tr id="EN-US_TOPIC_0125560282__row12921758113431"><td class="cellrowborder" valign="top" width="26.26%" headers="mcps1.3.7.2.3.1.1 "><p id="EN-US_TOPIC_0125560282__p40029462113431">x-amz-copy-source-server-side-encryption-customer-key-MD5</p>
</td>
<td class="cellrowborder" valign="top" width="73.74000000000001%" headers="mcps1.3.7.2.3.1.2 "><p id="EN-US_TOPIC_0125560282__p21160966113431">Indicates the MD5 value of the key used to decrypt a source object. The header is used in SSE-C mode. The MD5 value is used to check whether any error occurs during the transmission of the key.</p>
<p id="EN-US_TOPIC_0125560282__p044719212404">Example:</p>
<p id="EN-US_TOPIC_0125560282__p56230971113431">x-amz-copy-source-server-side-encryption-customer-key-MD5:4XvB3tbNTN+tIEVa0/fGaQ==</p>
</td>
</tr>
</tbody>
</table>
</div>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0125560343.html">Server-Side Encryption</a></div>
</div>
</div>
View Git Blame Copy Permalink