Y
Hacker News
new
|
ask
|
show
|
jobs
by
oittaa
1139 days ago
My understanding is that everything is encrypted by default in GCP. Though you need to manually configure encryption keys if you want to prevent Google ever having access to your data.
1 comments
FooBarWidget
1139 days ago
This I don't understand. Even if you configure KMS, those are still keys stored on Google infra.
link
oittaa
1138 days ago
You can use your own KMS outside the Google infrastructure.
https://cloud.google.com/storage/docs/encryption/customer-su...
link