Jawei, Li f1cb839979 OBS api-ref 2.0.38.SP5

Reviewed-by: gtema <artem.goncharov@gmail.com>
Co-authored-by: Jawei, Li <lijiawei5@huawei.com>
Co-committed-by: Jawei, Li <lijiawei5@huawei.com>

2022-11-03 11:54:51 +00:00

1.5 KiB

Raw Blame History

Server-Side Encryption Overview

Users can upload and download objects in common mode or using server-side encryption.

OBS supports server-side encryption.

Users can implement this function based on the key type to meet site requirements. Two server-side encryption modes are supported: KMS server-side encryption (SSE-KMS) and server-side encryption (SSE-C) provided by the customer. Both the two modes use the industry-standard AES256 encryption algorithm.

In the SSE-KMS mode, OBS uses the keys provided by KMS for server-side encryption.

In the SSE-C mode, OBS uses the keys and MD5 values provided by customers for server-side encryption.

When server-side encryption is used, the returned ETag value is not the MD5 value of the object. OBS will verify the MD5 value of an uploaded object when the upload request carries the Content-MD5 header field, no matter whether server-side encryption is used or not.

Parent topic: Server-Side Encryption

1.5 KiB Raw Blame History

Server-Side Encryption Overview

1.5 KiB

Raw Blame History