Help Center> Data Encryption Workshop> FAQs> General> What Functions Does DEW Provide?
View PDF

What Functions Does DEW Provide?

Key Management Service

Table 1 KMS functions

Function

Description

Key lifecycle management
  • Create, view, enable, disable, schedule the deletion of, and cancel the deletion of custom keys
  • Modify the alias and description of custom keys

User-imported key

Import CMKs and delete CMK material

Small-size data encryption and decryption

Use the online tool to encrypt and decrypt small-size data

Signature and verification

Sign or verify the signature of messages or message digests

NOTE:

This function can be called only through an API.

Key tag

Add, search for, edit, and delete tags

Key rotation

Enable, modify, and disable the key rotation

Key grant

Create, cancel, and query grants

Retire grants

NOTE:

This function can be called only through an API.

Cloud service encryption

Data encryption for OBS

Data encryption for EVS

Data encryption for IMS

Data encryption for SFS (SFS file system)

Data encryption for SFS (SFS Turbo file system)

Data encryption for RDS (MySQL, PostgreSQL, and SQL Server engine)

Data encryption for DDS

Data encryption for DWS

Data encryption key (DEK) management

Create, encrypt, and decrypt DEKs

NOTE:

This function can be called only through an API.

Generate hardware true random numbers.

Generate 512-bit hardware true random numbers, which can be used as a basis for key materials or as encryption parameters.

NOTE:

This function can be called only through an API.

Message authentication code

Generate and verify message authentication codes.

NOTE:

This function can be called only through an API.

Keystore management

Create, disable, and delete a keystore

Key Pair Service

Using the KPS console or APIs, you can perform the following operations on key pairs:
  • Creating, importing, viewing, and deleting key pairs
  • Resetting, replacing, binding, and unbinding key pairs
  • Managing, importing, exporting, and clearing private keys

Dedicated HSM

On the Dedicated HSM page of the management console, you can purchase Dedicated HSM instances, configure instances, and view information about instances.

Parent topic: General