Cloud Key Management Service allows you to create, import, and manage cryptographic keys
and perform cryptographic operations in a single centralized cloud service.
You can use these keys and perform these operations by using
Cloud KMS directly, by using Cloud HSM or Cloud External Key Manager, or by
using Customer-Managed Encryption Keys (CMEK) integrations within other
Google Cloud services.
With Cloud KMS you are the ultimate custodian of your data, you
can manage cryptographic keys in the cloud in the same ways you do
on-premises, and you have a provable and monitorable root of trust over your
Explore and deploy the components of a secure GCP solution through hands on labs. Learn best practices for securing applications and data and mitigation techniques for attacks at many points in a GCP-based infrastructure, including Distributed Denial-of-Service attacks, phishing attacks, and threats involving content classification and use.
In this lab you'll learn how to use some advanced features of Google Cloud Security and Privacy APIs, including: setting up a secure Cloud Storage bucket, managing keys and encrypted data, and viewing Cloud Storage audit logs.