密钥管理系统

{"list":[{"id":88649,"title":"产品公告\t","type":"directory","docType":"default","pdfUrl":"https://main.qcloudimg.com/raw/document/product/pdf/573_88649_cn.pdf","children":[{"id":88650,"title":"关于密钥管理系统标准版和旗舰版停售的公告","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/88650"}],"link":"/document/product/573/88649"},{"id":8777,"title":"产品简介","type":"directory","docType":"default","pdfUrl":"https://main.qcloudimg.com/raw/document/product/pdf/573_8777_cn.pdf","children":[{"id":8780,"title":"产品概述","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8780"},{"id":8873,"title":"产品优势","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8873"},{"id":8782,"title":"应用场景","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8782"},{"id":50351,"title":"基本概念","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/50351"}],"link":"/document/product/573/8777"},{"id":50352,"title":"新手指引","type":"page","docType":"default","pdfUrl":"https://main.qcloudimg.com/raw/document/product/pdf/573_50352_cn.pdf","link":"/document/product/573/50352"},{"id":34474,"title":"购买指南","type":"directory","docType":"price","pdfUrl":"https://main.qcloudimg.com/raw/document/product/pdf/573_34474_cn.pdf","children":[{"id":34388,"title":"计费概述","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34388"},{"id":18809,"title":"购买方式","type":"page","docType":"default","pdfUrl":"https://main.qcloudimg.com/raw/document/product/pdf/573_18809_cn.pdf","link":"/document/product/573/18809"},{"id":35906,"title":"欠费说明","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/35906"},{"id":49377,"title":"续费说明","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/49377"},{"id":49378,"title":"退费说明","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/49378"}],"link":"/document/product/573/34474"},{"id":8778,"title":"控制台指南","type":"directory","docType":"default","pdfUrl":"https://main.qcloudimg.com/raw/document/product/pdf/573_8778_cn.pdf","children":[{"id":38406,"title":"入门概述","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38406"},{"id":53526,"title":"密钥管理","type":"directory","docType":"default","pdfUrl":"","children":[{"id":8875,"title":"创建密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8875"},{"id":38386,"title":"查看密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38386"},{"id":38397,"title":"编辑密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38397"},{"id":38398,"title":"启用禁用密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38398"},{"id":38399,"title":"密钥轮换","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38399"},{"id":8877,"title":"加密解密","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8877"},{"id":38404,"title":"删除密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38404"},{"id":47826,"title":"密钥归档","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/47826"}],"link":"/document/product/573/53526"},{"id":48241,"title":"标签管理","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/48241"},{"id":10126,"title":"访问控制","type":"directory","docType":"default","pdfUrl":"","children":[{"id":10129,"title":"概述","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/10129"},{"id":38469,"title":"子账号管理","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38469"},{"id":10128,"title":"创建访问控制策略","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/10128"}],"link":"/document/product/573/10126"},{"id":53521,"title":"审计","type":"directory","docType":"default","pdfUrl":"","children":[{"id":53522,"title":"操作审计支持的操作列表","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/53522"},{"id":53523,"title":"查看审计日志","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/53523"}],"link":"/document/product/573/53521"},{"id":74713,"title":"HSM 独享密钥管理","type":"directory","docType":"default","pdfUrl":"","children":[{"id":74735,"title":"概述","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/74735"},{"id":74714,"title":"密钥管理","type":"directory","docType":"default","pdfUrl":"","children":[{"id":74716,"title":"创建密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/74716"},{"id":74723,"title":"编辑密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/74723"},{"id":74717,"title":"查看密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/74717"},{"id":74726,"title":"密钥归档","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/74726"},{"id":74727,"title":"密钥轮换","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/74727"},{"id":74728,"title":"启用禁用密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/74728"},{"id":74730,"title":"删除密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/74730"},{"id":74725,"title":"加密解密","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/74725"}],"link":"/document/product/573/74714"},{"id":74732,"title":"标签管理","type":"directory","docType":"default","pdfUrl":"","children":[{"id":74734,"title":"编辑标签","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/74734"},{"id":74733,"title":"使用标签管理示例","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/74733"}],"link":"/document/product/573/74732"}],"link":"/document/product/573/74713"}],"link":"/document/product/573/8778"},{"id":38382,"title":"TCCLI 管理指南","type":"directory","docType":"default","pdfUrl":"https://main.qcloudimg.com/raw/document/product/pdf/573_38382_cn.pdf","children":[{"id":38423,"title":"操作总览","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38423"},{"id":38383,"title":"创建密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38383"},{"id":38407,"title":"查看密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38407"},{"id":38409,"title":"编辑密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38409"},{"id":38418,"title":"启用禁用密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38418"},{"id":38420,"title":"密钥轮换","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38420"},{"id":38421,"title":"对称密钥加解密","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38421"},{"id":42124,"title":"非对称密钥解密","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/42124"},{"id":38422,"title":"删除密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38422"},{"id":47830,"title":"密钥归档","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/47830"}],"link":"/document/product/573/38382"},{"id":34528,"title":"最佳实践","type":"directory","docType":"practice","pdfUrl":"https://main.qcloudimg.com/raw/document/product/pdf/573_34528_cn.pdf","children":[{"id":42125,"title":"对称加解密","type":"directory","docType":"default","pdfUrl":"","children":[{"id":38365,"title":"敏感信息加解密","type":"directory","docType":"default","pdfUrl":"","children":[{"id":8790,"title":"概述","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8790"},{"id":38366,"title":"操作指南","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38366"}],"link":"/document/product/573/38365"},{"id":38424,"title":"信封加解密","type":"directory","docType":"default","pdfUrl":"","children":[{"id":8791,"title":"概述","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8791"},{"id":38425,"title":"操作指南","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38425"}],"link":"/document/product/573/38424"}],"link":"/document/product/573/42125"},{"id":42117,"title":"非对称加解密","type":"directory","docType":"default","pdfUrl":"","children":[{"id":51732,"title":"概述","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/51732"},{"id":51733,"title":"非对称数据加解密","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/51733"},{"id":53349,"title":"非对称签名验签","type":"directory","docType":"default","pdfUrl":"","children":[{"id":53385,"title":"概述","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/53385"},{"id":51734,"title":"SM2 签名验签","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/51734"},{"id":53350,"title":"RSA 签名验签","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/53350"},{"id":53354,"title":"ECC 签名验签","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/53354"}],"link":"/document/product/573/53349"}],"link":"/document/product/573/42117"},{"id":38493,"title":"外部密钥导入","type":"directory","docType":"default","pdfUrl":"","children":[{"id":38494,"title":"概述","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38494"},{"id":38495,"title":"操作指南","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38495"}],"link":"/document/product/573/38493"},{"id":43177,"title":"白盒密钥管理","type":"directory","docType":"default","pdfUrl":"","children":[{"id":43178,"title":"概述","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/43178"},{"id":43179,"title":"操作指南","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/43179"},{"id":45919,"title":"设备绑定指南","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/45919"},{"id":54236,"title":"使用 KMS 白盒密钥保护 SecretKey 最佳实践","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/54236"},{"id":54237,"title":"白盒密钥解密代码示例","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/54237"}],"link":"/document/product/573/43177"},{"id":47987,"title":"云产品集成 KMS 透明加密","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/47987"},{"id":37669,"title":"内测版 KMS 迁移指引","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/37669"},{"id":50894,"title":"指数回退策略应对服务限频","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/50894"}],"link":"/document/product/573/34528"},{"id":8887,"title":"API 文档","type":"directory","docType":"api","pdfUrl":"https://main.qcloudimg.com/raw/document/product/pdf/573_8887_cn.pdf","children":[{"id":34410,"title":"更新历史","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34410"},{"id":34402,"title":"简介","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34402"},{"id":34403,"title":"API 概览","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34403"},{"id":34404,"title":"调用方式","type":"directory","docType":"default","pdfUrl":"","children":[{"id":34405,"title":"请求结构","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34405"},{"id":34406,"title":"公共参数","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34406"},{"id":34407,"title":"签名方法 v3","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34407"},{"id":34408,"title":"签名方法","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34408"},{"id":34409,"title":"返回结果","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34409"},{"id":78519,"title":"参数类型","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/78519"}],"link":"/document/product/573/34404"},{"id":34411,"title":"密钥相关接口","type":"directory","docType":"default","pdfUrl":"","children":[{"id":34412,"title":"修改主密钥描述信息","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34412"},{"id":34413,"title":"修改别名","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34413"},{"id":34414,"title":"密文刷新","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34414"},{"id":34415,"title":"获取主密钥列表","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34415"},{"id":34416,"title":"获取主密钥列表详情","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34416"},{"id":34417,"title":"查询服务状态","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34417"},{"id":34418,"title":"查询密钥轮换状态","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34418"},{"id":34419,"title":"生成数据密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34419"},{"id":34420,"title":"加密","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34420"},{"id":34421,"title":"批量启动主密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34421"},{"id":34422,"title":"开启密钥轮换","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34422"},{"id":34423,"title":"启用主密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34423"},{"id":34424,"title":"批量禁用主密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34424"},{"id":34425,"title":"禁止密钥轮换","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34425"},{"id":34426,"title":"禁用主密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34426"},{"id":34427,"title":"获取多个主密钥属性","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34427"},{"id":34428,"title":"获取主密钥属性","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34428"},{"id":34429,"title":"解密","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34429"},{"id":34430,"title":"创建主密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34430"},{"id":35985,"title":"CMK计划删除接口","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/35985"},{"id":35986,"title":"取消CMK计划删除操作","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/35986"},{"id":38496,"title":"导入密钥材料","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38496"},{"id":38497,"title":"获取导入主密钥（CMK）材料的参数","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38497"},{"id":38498,"title":"删除导入的密钥材料","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38498"},{"id":38693,"title":"随机数生成接口","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/38693"},{"id":42143,"title":"列出当前Region支持的加密方式","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/42143"},{"id":46917,"title":"解绑CMK和云资源的关联关系","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/46917"},{"id":46918,"title":"绑定密钥和云产品资源的使用关系","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/46918"},{"id":47795,"title":"获取可以提供KMS服务的地域列表","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/47795"},{"id":47984,"title":"取消密钥归档","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/47984"},{"id":47985,"title":"密钥归档","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/47985"},{"id":90741,"title":"后量子密码算法加密","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/90741"},{"id":90742,"title":"后量子密码算法解密","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/90742"}],"link":"/document/product/573/34411"},{"id":42139,"title":"非对称密钥相关接口","type":"directory","docType":"default","pdfUrl":"","children":[{"id":42140,"title":"获取非对称密钥的公钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/42140"},{"id":42141,"title":"非对称密钥Sm2解密","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/42141"},{"id":42142,"title":"非对称密钥RSA解密","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/42142"},{"id":52064,"title":"验证签名","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/52064"},{"id":52065,"title":"签名","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/52065"},{"id":90739,"title":"后量子密码算法验签","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/90739"},{"id":90740,"title":"后量子密码算法签名","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/90740"}],"link":"/document/product/573/42139"},{"id":43432,"title":"白盒密钥相关接口","type":"directory","docType":"default","pdfUrl":"","children":[{"id":43433,"title":"使用白盒密钥进行加密","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/43433"},{"id":43434,"title":"批量启用白盒密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/43434"},{"id":43435,"title":"启用白盒密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/43435"},{"id":43436,"title":"批量禁用白盒密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/43436"},{"id":43437,"title":"禁用白盒密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/43437"},{"id":43438,"title":"获取白盒密钥服务状态","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/43438"},{"id":43439,"title":"获取白盒密钥列表","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/43439"},{"id":43440,"title":"展示白盒密钥的信息","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/43440"},{"id":43441,"title":"获取白盒解密密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/43441"},{"id":43442,"title":"删除白盒密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/43442"},{"id":43443,"title":"创建白盒密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/43443"},{"id":45805,"title":"覆盖指定密钥的设备指纹信息","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/45805"},{"id":45806,"title":"获取指定密钥的设备指纹列表","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/45806"}],"link":"/document/product/573/43432"},{"id":34431,"title":"数据结构","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34431"},{"id":34432,"title":"错误码","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/34432"},{"id":34433,"title":"密钥管理系统 API/SDK 2017","type":"directory","docType":"default","pdfUrl":"","children":[{"id":8906,"title":"简介","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8906"},{"id":8899,"title":"API 概览","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8899"},{"id":8907,"title":"更新历史","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8907"},{"id":8911,"title":"调用方式","type":"directory","docType":"default","pdfUrl":"","children":[{"id":8912,"title":"请求结构","type":"directory","docType":"default","pdfUrl":"","children":[{"id":8913,"title":"公共请求参数","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8913"},{"id":8914,"title":"最终请求形式","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8914"},{"id":8915,"title":"请求结构简介","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8915"}],"link":"/document/product/573/8912"},{"id":8916,"title":"返回结果","type":"directory","docType":"default","pdfUrl":"","children":[{"id":8917,"title":"错误返回结果","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8917"},{"id":8918,"title":"正确返回结果","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8918"},{"id":8919,"title":"错误码","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8919"}],"link":"/document/product/573/8916"},{"id":8920,"title":"签名方法","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8920"}],"link":"/document/product/573/8911"},{"id":8922,"title":"地域说明","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8922"},{"id":8888,"title":"加解密相关接口","type":"directory","docType":"default","pdfUrl":"","children":[{"id":8889,"title":"加密","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8889"},{"id":8890,"title":"解密","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8890"}],"link":"/document/product/573/8888"},{"id":8891,"title":"密钥管理相关接口","type":"directory","docType":"default","pdfUrl":"","children":[{"id":8892,"title":"修改主密钥属性","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8892"},{"id":8893,"title":"创建主密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8893"},{"id":8894,"title":"启用主密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8894"},{"id":8895,"title":"生成数据密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8895"},{"id":8896,"title":"禁用主密钥","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8896"},{"id":8897,"title":"获取主密钥列表","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8897"},{"id":8898,"title":"获取主密钥属性","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8898"}],"link":"/document/product/573/8891"},{"id":8900,"title":"SDK 文档","type":"directory","docType":"sdk","pdfUrl":"https://main.qcloudimg.com/raw/document/product/pdf/573_8900_cn.pdf","children":[{"id":8901,"title":"SDK使用","type":"directory","docType":"default","pdfUrl":"","children":[{"id":8902,"title":"C++ SDK","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8902"},{"id":8903,"title":"Java SDK","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8903"},{"id":8904,"title":"Python SDK","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8904"},{"id":8905,"title":"PHP SDK","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8905"}],"link":"/document/product/573/8901"},{"id":8908,"title":"SDK 下载","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8908"},{"id":8909,"title":"SDK文档","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8909"},{"id":8910,"title":"SDK 更新日志","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/8910"}],"link":"/document/product/573/8900"}],"link":"/document/product/573/34433"}],"link":"/document/product/573/8887"},{"id":50854,"title":"常见问题","type":"directory","docType":"faq","pdfUrl":"https://main.qcloudimg.com/raw/document/product/pdf/573_50854_cn.pdf","children":[{"id":50855,"title":"一般性问题","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/50855"},{"id":50856,"title":"开发接入相关问题","type":"page","docType":"default","pdfUrl":"","link":"/document/product/573/50856"}],"link":"/document/product/573/50854"},{"id":91000,"title":"服务等级协议","type":"page","docType":"default","pdfUrl":"https://main.qcloudimg.com/raw/document/product/pdf/573_91000_cn.pdf","link":"/document/product/573/91000"},{"id":59744,"title":"联系我们","type":"page","docType":"default","pdfUrl":"https://main.qcloudimg.com/raw/document/product/pdf/573_59744_cn.pdf","link":"/document/product/573/59744"},{"id":8781,"title":"词汇表","type":"page","docType":"glossary","pdfUrl":"https://main.qcloudimg.com/raw/document/product/pdf/573_8781_cn.pdf","link":"/document/product/573/8781"}],"categoryId":573,"title":"密钥管理系统","lang":"zh"}

文档中心密钥管理系统产品简介基本概念

基本概念

最近更新时间：2023-10-09 11:06:11

我的收藏

本页目录：

本文主要罗列了密钥管理系统（KMS）的基本概念。
密钥生命周期
密钥生命周期指密钥的生成、存储、分发、导入、导出、使用、恢复、归档与销毁等一系列环节，其中密钥管理系统 KMS 提供密钥全生命周期管理，确保密钥以安全的方式完成该系列操作，防止密钥被泄露。
对称加解密
对称加密指采用单钥密码系统的加密方法，同一个密钥可以同时用作信息的加密和解密。
说明：
密钥管理系统（KMS）提供了对称加解密方案，详细请参见 对称加解密。
非对称加解密
非对称加解密需要两个密钥：公开密钥和私有密钥。公钥和私钥是一对密钥，信息传送者使用公钥对数据进行加密，信息接受者只有用对应的私钥才能解密。另一方面，信息传送者可使用私钥对机密信息进行签名，信息接受者使用对应的公钥对接收的数据进行验签。
说明：
密钥管理系统（KMS） 也提供了非对称加解密方案，详情请参见 非对称加解密。
用户主密钥（CMK）
用于保护密钥管理系统（KMS）用户敏感数据和数据加密密钥（DEK），由密钥管理系统调用硬件密码机产生，并且被 Domain Key 加密保护。CMK 仅能通过加密机进行加解密操作。
数据加密密钥（DEK）
信封加密场景中，DEK 用于直接加密解密用户数据，由密钥管理系统调用硬件密码机产生，并且被用户主密钥（CMK）加密后以密文及明文的形式返回给应用系统，业务侧通过在内存中的 DEK 明文进行本地高性能加解密。
白盒密钥
指通过白盒密码技术保障安全性下的密钥，白盒密钥用于保护端上的敏感根密钥信息，例如 API SecretKey，用户内部系统使用的鉴权密钥或 token，其它本地敏感根密钥信息等。
说明：
密钥管理系统（KMS）提供了白盒密钥管理的解决方案，详情请参见 白盒密钥管理。
敏感数据
敏感数据是指敏感、隐私的信息内容，例如密钥、证书、配置文件、银行账号、身份证号码等。
硬件安全模块
硬件安全模块（Hardware Security Module，HSM） 是一种用于保护和管理强认证系统所使用的密钥，并同时提供相关密码学操作的计算机硬件设备 。KMS 底层使用商用密码认证或 FIPS-140-2 认证的硬件安全模块 HSM 来保护密钥的安全，确保密钥的保密性、完整性和可用性。
BYOK
BYOK（Bring Your Own Key）是指用户可以自行导入密钥材料至用户主密钥中，详情请参见 外部密钥导入。

上一篇: 应用场景下一篇: 新手指引