forked from docs/doc-exports
Li, Qiao
67bd972647
Reviewed-by: Hasko, Vladimir <vladimir.hasko@t-systems.com> Co-authored-by: Li, Qiao <qiaoli@huawei.com> Co-committed-by: Li, Qiao <qiaoli@huawei.com>
515 lines
19 KiB
JSON
515 lines
19 KiB
JSON
[
|
|
{
|
|
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"product_code":"kms",
|
|
"title":"About KMS",
|
|
"uri":"kms_01_0045.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"",
|
|
"code":"1"
|
|
},
|
|
{
|
|
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"product_code":"kms",
|
|
"title":"Concepts",
|
|
"uri":"kms_01_0003.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"1",
|
|
"code":"2"
|
|
},
|
|
{
|
|
"desc":"Key Management Service (KMS) is a secure, reliable, and easy-to-use service that helps users centrally manage and safeguard their Customer Master Keys (CMKs).This service",
|
|
"product_code":"kms",
|
|
"title":"KMS",
|
|
"uri":"kms_01_0004.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"2",
|
|
"code":"3"
|
|
},
|
|
{
|
|
"desc":"A Customer Master Key (CMK) is a Key Encryption Key (KEK) created by a user using KMS. It is used to encrypt and protect Data Encryption Keys (DEKs). One CMK can be used ",
|
|
"product_code":"kms",
|
|
"title":"CMK",
|
|
"uri":"kms_01_0005.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"2",
|
|
"code":"4"
|
|
},
|
|
{
|
|
"desc":"A Default Master Key is automatically created by another cloud service using KMS, such as Object Storage Service (OBS). The alias of a Default Master Key ends with /defau",
|
|
"product_code":"kms",
|
|
"title":"Default Master Key",
|
|
"uri":"kms_01_0006.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"2",
|
|
"code":"5"
|
|
},
|
|
{
|
|
"desc":"Data Encryption Keys (DEKs) are used by users to encrypt data.",
|
|
"product_code":"kms",
|
|
"title":"DEK",
|
|
"uri":"kms_01_0007.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"2",
|
|
"code":"6"
|
|
},
|
|
{
|
|
"desc":"A hardware security module (HSM) is a hardware device that securely produces, stores, manages, and uses CMKs. In addition, it provides encryption processing services.",
|
|
"product_code":"kms",
|
|
"title":"HSM",
|
|
"uri":"kms_01_0008.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"2",
|
|
"code":"7"
|
|
},
|
|
{
|
|
"desc":"Envelope encryption is an encryption method that enables DEKs to be stored, transmitted, and used in \"envelopes.\" As a result, CMKs are not used to directly encrypt and d",
|
|
"product_code":"kms",
|
|
"title":"Envelope Encryption",
|
|
"uri":"kms_01_0009.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"2",
|
|
"code":"8"
|
|
},
|
|
{
|
|
"desc":"A true random number generator (TRNG) is a device that generates unpredictable random numbers by physical procedures instead of computer programs.",
|
|
"product_code":"kms",
|
|
"title":"TRNG",
|
|
"uri":"kms_01_0010.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"2",
|
|
"code":"9"
|
|
},
|
|
{
|
|
"desc":"A project is used to group and isolate OpenStack resources, including computing, storage, and network resources. A project can be a department or a project team.Multiple ",
|
|
"product_code":"kms",
|
|
"title":"Project",
|
|
"uri":"kms_01_0012.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"2",
|
|
"code":"10"
|
|
},
|
|
{
|
|
"desc":"KMS can manage CMKs used for data encryption and decryption in Object Storage Service (OBS), Elastic Volume Service (EVS), Image Management Service (IMS), Scalable File S",
|
|
"product_code":"kms",
|
|
"title":"Application Scenarios",
|
|
"uri":"kms_01_0046.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"1",
|
|
"code":"11"
|
|
},
|
|
{
|
|
"desc":"KMS provides the following functions:Manages CMKs.Using the KMS console or APIs, you can perform the following operations on CMKs:Creating, querying, enabling, disabling,",
|
|
"product_code":"kms",
|
|
"title":"Functions",
|
|
"uri":"kms_01_0047.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"1",
|
|
"code":"12"
|
|
},
|
|
{
|
|
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"product_code":"kms",
|
|
"title":"Accessing and Using KMS",
|
|
"uri":"kms_01_0013.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"1",
|
|
"code":"13"
|
|
},
|
|
{
|
|
"desc":"The public cloud provides a web-based service management platform. You can access KMS using HTTPS-compliant APIs or the management console.Management consoleIf you have r",
|
|
"product_code":"kms",
|
|
"title":"How to Access KMS",
|
|
"uri":"kms_01_0014.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"13",
|
|
"code":"14"
|
|
},
|
|
{
|
|
"desc":"Users can upload objects to and download them from Object Storage Service (OBS) in common mode or server-side encryption mode. When users upload objects in encryption mod",
|
|
"product_code":"kms",
|
|
"title":"How to Use KMS",
|
|
"uri":"kms_01_0015.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"13",
|
|
"code":"15"
|
|
},
|
|
{
|
|
"desc":"KMS provides central management and control capabilities of CMKs for Object Storage Service (OBS). It is used for server-side encryption with KMS-managed keys (SSE-KMS) f",
|
|
"product_code":"kms",
|
|
"title":"Related Services",
|
|
"uri":"kms_01_0016.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"13",
|
|
"code":"16"
|
|
},
|
|
{
|
|
"desc":"The public cloud system provides two types of permissions by default: user management and resource management. User management refers to the management of users, user gro",
|
|
"product_code":"kms",
|
|
"title":"User Permissions",
|
|
"uri":"kms_01_0017.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"13",
|
|
"code":"17"
|
|
},
|
|
{
|
|
"desc":"If you want to assign different access permissions to employees in an enterprise for the KMS resources purchased on the cloud platform, you can use Identity and Access Ma",
|
|
"product_code":"kms",
|
|
"title":"KMS Permissions Management",
|
|
"uri":"kms_01_9999.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"13",
|
|
"code":"18"
|
|
},
|
|
{
|
|
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"product_code":"kms",
|
|
"title":"Management",
|
|
"uri":"kms_01_0018.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"",
|
|
"code":"19"
|
|
},
|
|
{
|
|
"desc":"This section describes how to create a CMK on the KMS management console. You can create up to 100 CMKs, excluding Default Master Keys.The CMK is perfectly suited for but",
|
|
"product_code":"kms",
|
|
"title":"Creating a Key",
|
|
"uri":"en-us_topic_0034330265.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"19",
|
|
"code":"20"
|
|
},
|
|
{
|
|
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"product_code":"kms",
|
|
"title":"Creating CMKs Using Imported Key Material",
|
|
"uri":"kms_01_0019.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"19",
|
|
"code":"21"
|
|
},
|
|
{
|
|
"desc":"A CMK contains key metadata (key ID, key alias, description, key status, and creation date) and the key material used for encrypting and decrypting data.When a user uses ",
|
|
"product_code":"kms",
|
|
"title":"Overview",
|
|
"uri":"kms_01_0054.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"21",
|
|
"code":"22"
|
|
},
|
|
{
|
|
"desc":"If you want to use your own key material instead of the KMS-generated material, you can use the console to import your key material to KMS. CMKs created using imported ma",
|
|
"product_code":"kms",
|
|
"title":"Importing Key Material",
|
|
"uri":"kms_01_0055.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"21",
|
|
"code":"23"
|
|
},
|
|
{
|
|
"desc":"When importing key material, you can specify the expiration time. After the key material expires, KMS deletes it, and the status of the CMK changes to Pending import. You",
|
|
"product_code":"kms",
|
|
"title":"Deleting Key Material",
|
|
"uri":"kms_01_0020.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"21",
|
|
"code":"24"
|
|
},
|
|
{
|
|
"desc":"This section describes how to use the management console to schedule the deletion of one or multiple unwanted CMKs.If deletion is scheduled for a CMK, the deletion will n",
|
|
"product_code":"kms",
|
|
"title":"Scheduling the Deletion of One or Multiple CMKs",
|
|
"uri":"kms_01_0072.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"19",
|
|
"code":"25"
|
|
},
|
|
{
|
|
"desc":"This section describes how to configure the Simple Message Notification (SMN) function on the Cloud Trace Service (CTS) console.Decryption will fail if the CMK used has b",
|
|
"product_code":"kms",
|
|
"title":"Configuring SMN",
|
|
"uri":"kms_01_0021.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"19",
|
|
"code":"26"
|
|
},
|
|
{
|
|
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"product_code":"kms",
|
|
"title":"Managing Tags",
|
|
"uri":"kms_01_0023.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"19",
|
|
"code":"27"
|
|
},
|
|
{
|
|
"desc":"Tags are used to identify CMKs. You can add tags to CMKs so that you can classify CMKs, trace them, and collect their usage status according to the tags.KMS does not supp",
|
|
"product_code":"kms",
|
|
"title":"Adding a Tag",
|
|
"uri":"kms_01_0024.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"27",
|
|
"code":"28"
|
|
},
|
|
{
|
|
"desc":"This section describes how to search for tags through KMS. You can search for tags of all CMKs that meet the search criteria in the current project.You have obtained an a",
|
|
"product_code":"kms",
|
|
"title":"Searching for Tags",
|
|
"uri":"kms_01_0025.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"27",
|
|
"code":"29"
|
|
},
|
|
{
|
|
"desc":"This section describes how to modify tag values on the KMS management console.You have obtained an account and its password for logging in to the management console.",
|
|
"product_code":"kms",
|
|
"title":"Modifying Tag Values",
|
|
"uri":"kms_01_0026.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"27",
|
|
"code":"30"
|
|
},
|
|
{
|
|
"desc":"This section describes how to delete tags on the KMS management console.You have obtained an account and its password for logging in to the management console.",
|
|
"product_code":"kms",
|
|
"title":"Deleting Tags",
|
|
"uri":"kms_01_0027.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"27",
|
|
"code":"31"
|
|
},
|
|
{
|
|
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"product_code":"kms",
|
|
"title":"Managing a Grant",
|
|
"uri":"kms_01_0028.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"19",
|
|
"code":"32"
|
|
},
|
|
{
|
|
"desc":"You can create grants for other users to use the CMK. You can create a maximum of 100 grants for a CMK.The owner of a CMK can create a grant for the CMK on the KMS manage",
|
|
"product_code":"kms",
|
|
"title":"Creating a Grant",
|
|
"uri":"kms_01_0029.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"32",
|
|
"code":"33"
|
|
},
|
|
{
|
|
"desc":"This section describes how to view the details about a grant, such as the grant ID, grantee user ID, granted operation, and creation time.You have obtained an account and",
|
|
"product_code":"kms",
|
|
"title":"Querying a Grant",
|
|
"uri":"kms_01_0030.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"32",
|
|
"code":"34"
|
|
},
|
|
{
|
|
"desc":"You can revoke a grant in either of the following scenarios:A grantee does not need the grant. (The grantee can either tell the user who has created the grant to revoke t",
|
|
"product_code":"kms",
|
|
"title":"Revoking a Grant",
|
|
"uri":"kms_01_0031.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"32",
|
|
"code":"35"
|
|
},
|
|
{
|
|
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"product_code":"kms",
|
|
"title":"Rotating CMKs",
|
|
"uri":"kms_01_0138.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"19",
|
|
"code":"36"
|
|
},
|
|
{
|
|
"desc":"Security risks exist when a DEK is extensively and repeatedly used. For security purposes, you can configure KMS to create new key materials for the CMK.New key materials",
|
|
"product_code":"kms",
|
|
"title":"Context",
|
|
"uri":"kms_01_0094.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"36",
|
|
"code":"37"
|
|
},
|
|
{
|
|
"desc":"This section describes how to enable rotation for a key on the KMS console.By default, automatic key rotation is disabled for a CMK. Every time you enable key rotation, K",
|
|
"product_code":"kms",
|
|
"title":"Enabling Key Rotation",
|
|
"uri":"kms_01_0139.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"36",
|
|
"code":"38"
|
|
},
|
|
{
|
|
"desc":"This section describes how to disable rotation for a key on the KMS console.You have obtained an account and its password for logging in to the management console.The CMK",
|
|
"product_code":"kms",
|
|
"title":"Disabling Key Rotation",
|
|
"uri":"kms_01_0095.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"36",
|
|
"code":"39"
|
|
},
|
|
{
|
|
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"product_code":"kms",
|
|
"title":"Managing CMKs",
|
|
"uri":"kms_01_0032.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"19",
|
|
"code":"40"
|
|
},
|
|
{
|
|
"desc":"This section describes how to use the management console to view the information about a CMK, such as its alias, status, ID, and creation time. The status of a CMK can be",
|
|
"product_code":"kms",
|
|
"title":"Querying a CMK",
|
|
"uri":"kms_01_0096.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"40",
|
|
"code":"41"
|
|
},
|
|
{
|
|
"desc":"The alias of a CMK is a user-friendly name designed to help you locate the CMK easier.This section describes how to change the alias and description of a CMK on the KMS m",
|
|
"product_code":"kms",
|
|
"title":"Changing the Alias and Description of a CMK",
|
|
"uri":"kms_01_0033.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"40",
|
|
"code":"42"
|
|
},
|
|
{
|
|
"desc":"This section describes how to use the management console to enable one or multiple CMKs. Only enabled CMKs can be used to encrypt/decrypt data. A new CMK is in the Enable",
|
|
"product_code":"kms",
|
|
"title":"Enabling One or Multiple CMKs",
|
|
"uri":"kms_01_0034.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"40",
|
|
"code":"43"
|
|
},
|
|
{
|
|
"desc":"This section describes how to use the management console to disable one or multiple CMKs, thereby protecting data in urgent cases.After being disabled, a CMK cannot be us",
|
|
"product_code":"kms",
|
|
"title":"Disabling One or Multiple CMKs",
|
|
"uri":"kms_01_0035.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"40",
|
|
"code":"44"
|
|
},
|
|
{
|
|
"desc":"This section describes how to use the management console to cancel the scheduled deletion of one or multiple CMKs prior to deletion execution.You have obtained an account",
|
|
"product_code":"kms",
|
|
"title":"Canceling the Scheduled Deletion of One or Multiple CMKs",
|
|
"uri":"kms_01_0036.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"40",
|
|
"code":"45"
|
|
},
|
|
{
|
|
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"product_code":"kms",
|
|
"title":"Permissions Management",
|
|
"uri":"kms_01_9998.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"19",
|
|
"code":"46"
|
|
},
|
|
{
|
|
"desc":"This section describes IAM's fine-grained permissions management for your KMS resources. With IAM, you can:Create IAM users for employees based on the organizational stru",
|
|
"product_code":"kms",
|
|
"title":"Creating a User and Authorizing the User the Permission to Access KMS",
|
|
"uri":"kms_01_9997.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"46",
|
|
"code":"47"
|
|
},
|
|
{
|
|
"desc":"Custom policies can be created as a supplement to the system policies of KMS. For details about the actions supported by custom policies, see \"Permissions Policies and Su",
|
|
"product_code":"kms",
|
|
"title":"Creating a Custom KMS Policy",
|
|
"uri":"kms_01_9996.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"46",
|
|
"code":"48"
|
|
},
|
|
{
|
|
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"product_code":"kms",
|
|
"title":"FAQs",
|
|
"uri":"kms_01_0037.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"",
|
|
"code":"49"
|
|
},
|
|
{
|
|
"desc":"Key Management Service (KMS) is a secure, reliable, and easy-to-use service that helps users centrally manage and safeguard their Customer Master Keys (CMKs).This service",
|
|
"product_code":"kms",
|
|
"title":"What Is Key Management Service?",
|
|
"uri":"kms_01_0073.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"49",
|
|
"code":"50"
|
|
},
|
|
{
|
|
"desc":"A Customer Master Key (CMK) is a Key Encryption Key (KEK) created by a user using KMS. It is used to encrypt and protect Data Encryption Keys (DEKs). One CMK can be used ",
|
|
"product_code":"kms",
|
|
"title":"What Is a Customer Master Key?",
|
|
"uri":"kms_01_0074.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"49",
|
|
"code":"51"
|
|
},
|
|
{
|
|
"desc":"A data encryption key (DEK) is used to encrypt data.",
|
|
"product_code":"kms",
|
|
"title":"What Is a Data Encryption Key?",
|
|
"uri":"kms_01_0038.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"49",
|
|
"code":"52"
|
|
},
|
|
{
|
|
"desc":"The decision to delete a CMK should be taken with caution. Before deletion, confirm that the CMK's encrypted data has all been migrated. Once the CMK is deleted, you will",
|
|
"product_code":"kms",
|
|
"title":"Why Cannot I Delete a CMK Immediately?",
|
|
"uri":"kms_01_0039.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"49",
|
|
"code":"53"
|
|
},
|
|
{
|
|
"desc":"Object Storage Service (OBS), Elastic Volume Service (EVS), Image Management Service (IMS), Scalable File Service (SFS), and Relational Database Service (RDS) can use KMS",
|
|
"product_code":"kms",
|
|
"title":"Which Cloud Services Can Use KMS for Encryption?",
|
|
"uri":"kms_01_0040.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"49",
|
|
"code":"54"
|
|
},
|
|
{
|
|
"desc":"No.The pending period of a CMK from its scheduling till its deletion is not charged.However, if you cancel the scheduled deletion, the charging resumes from the time when",
|
|
"product_code":"kms",
|
|
"title":"Will a CMK Be Charged After It Is Scheduled to Delete?",
|
|
"uri":"kms_01_0093.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"49",
|
|
"code":"55"
|
|
},
|
|
{
|
|
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"product_code":"kms",
|
|
"title":"Change History",
|
|
"uri":"kms_01_0043.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"",
|
|
"code":"56"
|
|
},
|
|
{
|
|
"desc":"For details about the glossaries in this document, see Glossary.",
|
|
"product_code":"kms",
|
|
"title":"Glossary",
|
|
"uri":"kms_01_0044.html",
|
|
"doc_type":"usermanual",
|
|
"p_code":"",
|
|
"code":"57"
|
|
}
|
|
] |