Help Center/ Data Encryption Workshop/ User Guide (Kuala Lumpur Region)/ FAQs/ KMS Related/ How Does KMS Protect My Keys?

Updated on 2024-03-27 GMT+08:00

View PDF

How Does KMS Protect My Keys?

The mechanism of KMS prevents anyone from accessing your keys in plaintext. KMS relies on hardware security modules (HSMs) that safeguard the confidentiality and integrity of your keys. Plaintext KMS keys are always encrypted by HSMs and are never stored on any disk. These keys are only utilized within the volatile memory of the HSMs for as long as necessary to perform the cryptographic operation you have requested.

Parent topic: KMS Related

Previous topic: What Is the Relationship Between the Ciphertext and Plaintext Returned by the encrypt-data API?

Next topic: Credential Related

Feedback

Was this page helpful?

Helpful Not helpful

Provide feedback

Thank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.

The system is busy. Please try again later.

Which of the following issues have you encountered?

Content is inconsistent with the product UI

Unclear descriptions

Lack of examples or code

Incorrect steps

Can't find what I need

Lack of best practices

Feedback (optional)

0/500

Select at least one type of issue, and enter your comments or suggestions.

Enter a maximum of 500 characters.

Submit Cancel

For any further questions, feel free to contact us through the chatbot.