检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
For details, see Encrypting Images. Before using encryption, you need to create an agency to grant KMS access permissions to EVS. If you have the right to grant the permission, grant KMS access permissions to EVS directly.
Data Encryption Workshop (DEW) is a secure, reliable, and easy-to-use solution for encrypting and decrypting private data while ensuring its security. This example introduces how to create a shared secret in DEW. Log in to the DEW management console.
This parameter must be used with kms_id. kms_id No String Key ID used for transferring and encrypting trace files. This key ID is obtained from Key Management Service (KMS). This parameter is valid when tracker_type is set to system.
For details, see Encrypting Data over SSL for a GeminiDB Redis Instance. Rename High-risk Command To prevent data loss, instance restart, and performance jitter caused by misoperations, you can rename high-risk commands of a GeminiDB Redis instance.
breakers No - - - - - content_type_configurable Returning request parameter type (Content-Type) when querying APIs No - - - - - rate_limit_plugin Request throttling plug-ins No - - - - - breakerv2 Circuit breakers for degrading services in case of overload No - - - - - sm_cipher_type Encrypting
Notes If the metadata contains sensitive data, take appropriate measures to protect the sensitive data, for example, controlling access permissions and encrypting the data.
For details, see Encrypting and Decrypting Small-size Data Online Using a Custom Key. Set the dataInputStr parameter in /home/huawei-qingtian/enclave/qtsm-sdk-java/kms-cms-java/com/huawei/src/test/TestKmsCmsProxy.java to the encrypted ciphertext.
Value range: None Default value: None CopySourceSseC string Yes when SSE-C is used Explanation: SSE-C is used for encrypting objects on the server side. Restrictions: Only AES256 is supported.
Table 4 TrackerResponseBody Parameter Type Description id String Unique tracker ID. create_time Long Timestamp when the tracker was created. kms_id String Key ID used for transferring and encrypting trace files. This key ID is obtained from Key Management Service (KMS).
For details, see Encrypting Data over SSL for a GeminiDB Redis Instance. Redis Cluster GeminiDB Redis instances do not support SSL. Parameter Template You can use parameters in a parameter template to manage database API configurations.
Java Mongo How to Use If you are connecting to an instance using Java, an SSL certificate is optional, but downloading an SSL certificate and encrypting the connection will improve the security of your instance.
Example: x-obs-server-side-encryption-customer-algorithm:AES256 Restrictions: None Value range: AES256 Default value: None x-obs-server-side-encryption-customer-key-MD5 String Explanation: Indicates the MD5 value of the key for encrypting objects.
Explanation: The key used for encrypting an object. Example: x-obs-server-side-encryption-customer-key:K7QkYpBkM5+hca27fsNkUnNVaobncnLht/rCB2o/9Cw= Restrictions: This header is used only when SSE-C is used.
Xrole Name: EVSAccessKMS: indicates that rights have been granted to EVS to obtain KMS keys for encrypting or decrypting EVS disks. KMS Key ID: specifies the ID of the key used by the encrypted data disk.
Xrole Name: EVSAccessKMS: indicates that rights have been granted to EVS to obtain KMS keys for encrypting or decrypting EVS disks. KMS Key ID: specifies the ID of the key used by the encrypted data disk.
For details about automatic configuration, see Registering an Image File as a Private Image. cmk_id No String Specifies a custom key used for encrypting an image. For its value, see the Key Management Service User Guide. tags No Array of strings Lists the image tags.
When SFSAccessKMS is displayed for Agency Name, the KMS access rights have been granted to SFS Capacity-Oriented, and SFS Capacity-Oriented can obtain KMS keys for encrypting or decrypting the file system.
- Cryptographic Algorithm Algorithm used for encrypting and decrypting passwords in the cluster system. International: general encryption algorithm Chinese: SM series cryptographic algorithms are compatible with general cryptographic algorithms.
Encrypting a Plaintext Concatenate plaintext strings, which consist of a 16-byte random characters and a plaintext msg, and are separated by ampersands (&).
The authorized operations must at least contain Querying key details, Encrypting data, and Decrypting data. Specify whether to enable the IPv6 dual stack for the cluster. If this function is enabled, a client or application can connect to the database using an IPv6 address.
