检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
For details, see Encrypting and Decrypting Data Columns. Viewing Audit Logs to Check the Users Who Have Modified Service Data Database audit logs record users' daily activities, including accessing and modifying service data.
This parameter must be used with kms_id. kms_id No String Key ID used for transferring and encrypting trace files. This key ID is obtained from Key Management Service (KMS). This parameter is valid when tracker_type is set to system.
For details, see Encrypting Data over SSL for a GeminiDB Redis Instance. Rename High-risk Command To prevent data loss, instance restart, and performance jitter caused by misoperations, you can rename high-risk commands of a GeminiDB Redis instance.
For details, see Encrypting and Decrypting Small-size Data Online Using a Custom Key. Set the dataInputStr parameter in /home/huawei-qingtian/enclave/qtsm-sdk-java/kms-cms-java/com/huawei/src/test/TestKmsCmsProxy.java to the encrypted ciphertext.
Value range: None Default value: None CopySourceSseC string Yes when SSE-C is used Explanation: SSE-C is used for encrypting objects on the server side. Restrictions: Only AES256 is supported.
Java Mongo How to Use If you are connecting to an instance using Java, an SSL certificate is optional, but downloading an SSL certificate and encrypting the connection will improve the security of your instance.
Table 4 TrackerResponseBody Parameter Type Description id String Unique tracker ID. create_time Long Timestamp when the tracker was created. kms_id String Key ID used for transferring and encrypting trace files. This key ID is obtained from Key Management Service (KMS).
The authorized operations must at least contain Querying key details, Encrypting data, and Decrypting data. Specify whether to enable the IPv6 dual stack for the cluster. If this function is enabled, a client or application can connect to the database using an IPv6 address.
For details, see Encrypting Data over SSL for a GeminiDB Redis Instance. Redis Cluster GeminiDB Redis instances do not support SSL. Parameter Template You can use parameters in a parameter template to manage database API configurations.
Notes If the metadata contains sensitive data, take appropriate measures to protect the sensitive data, for example, controlling access permissions and encrypting the data.
breakers No - - - - - content_type_configurable Returning request parameter type (Content-Type) when querying APIs No - - - - - rate_limit_plugin Request throttling plug-ins No - - - - - breakerv2 Circuit breakers for degrading services in case of overload No - - - - - sm_cipher_type Encrypting
Encrypting Data The data encryption module manages encryption and decryption tasks, authorizes client and database users to restrict user access, views and downloads encryption logs, rolls back table structures, manages encryption tables, and downloads bypass plug-ins.
Example: x-obs-server-side-encryption-customer-algorithm:AES256 Constraints: None Range: AES256 Default value: None x-obs-server-side-encryption-customer-key-MD5 String Definition: Indicates the MD5 value of the key for encrypting objects.
Definition: The key used for encrypting an object. Example: x-obs-server-side-encryption-customer-key:K7QkYpBkM5+hca27fsNkUnNVaobncnLht/rCB2o/9Cw= Constraints: This header is used only when SSE-C is used.
Xrole Name: EVSAccessKMS: indicates that rights have been granted to EVS to obtain KMS keys for encrypting or decrypting EVS disks. KMS Key ID: specifies the ID of the key used by the encrypted data disk.
Xrole Name: EVSAccessKMS: indicates that rights have been granted to EVS to obtain KMS keys for encrypting or decrypting EVS disks. KMS Key ID: specifies the ID of the key used by the encrypted data disk.
When SFSAccessKMS is displayed for Agency Name, the KMS access rights have been granted to SFS Capacity-Oriented, and SFS Capacity-Oriented can obtain KMS keys for encrypting or decrypting the file system.
After a KMS-encrypted object is replicated to the destination bucket, the key for encrypting the object copy changes to the default key obs/default of the destination region.
Encrypting a Plaintext Concatenate plaintext strings, which consist of a 16-byte random characters and a plaintext msg, and are separated by ampersands (&).
The authorized operations must at least contain Querying key details, Encrypting data, and Decrypting data. Specify whether to enable the IPv6 dual stack for the cluster. If this function is enabled, a client or application can connect to the database using an IPv6 address.
