|Y||google cloud project id|
This service implements following interfaces:
Google Cloud Storage supports three options for Server-Side Encryption:
- Google-managed encryption keys: This is the default behaviour, no setup or configuration required.
- Customer-managed encryption keys: You can add a default KMS key to a bucket, then the objects in the bucket are encrypted/decrepted automatically. You can also encrypt an individual object with a Cloud KMS key.
- Customer-supplied encryption keys
Refer to https://cloud.google.com/storage/docs/encryption for more details.
|the Cloud KMS key resource. For example, |
|a 32-byte customer-provided AES256 key|