Archives for Encryption and Data Protection
FIPS 140 Level 2 encryption requirements on GCP
Cloud KMS does not meet Level 2 Fips 140 requirements Only Cloud HSM does - and requires an on premises HSM solution.
Using CMEKs in GCP
If you use a CMEK, the CMEK is used to encrypt the Object Data, Object's checksum and MD5 hash, but not the object name. The object name is still encrypted…
Certificate Authority as a Service and VPC Service Controls GCP
Certificate Authority as a Service CAs as a service are part of GCP's offerings now. Certificate Authority as a Service, like all GCP networking services, are tied to a VPC…
Create your own Certificate Authority and Root Certificates
This content is password protected. To view it please enter your password below: Password:
Why use a Customer Managed Key on AWS or GCP?
Why use a CMK on AWS ( a CMEK on GCP) at all, when the Cloud Provider managed keys will perform the same task? That's a question a lot of…
At Rest Encryption GCP
Also read In Transit encryption GCP Cloud Storage? At rest encryption. Google Managed Keys (Native Google or CMEKs) or BYOK (CSEKs) Cloud SQL? Row Level Encryption What if I don't…