The Google Cloud documentation is not clear on this. We’ve been trying to understand if Google Cloud can access data stored in Google Storage when using Google-managed encryption keys.
If yes, is there a way to restrict such access?
Can Google Cloud access data stored in Google Storage when using Google-managed encryption keys?
Userlevel 6
+8
Hi
Thank you for the question.
The simple answer is Google does not own the files that users upload to storage.
Google utilises many layers of encryption to safeguard client data at rest in Google Cloud products.
Google Cloud encrypts all client material kept at rest using one or more encryption techniques without requiring any action from the customer.
Google Cloud Storage built-in security features such as encryption in transit and at rest and a variety of encryption key management options, including Google-managed, customer-supplied, customer-managed, and hardware encryption keys.
Also, Google customer can mange their data using customer manage encryption key: You check the following url for further details.
- Google customer can manage their own data using the Customer-managed encryption keys
- . You can check how google encrypt customer data using Google-managed encryption keys
I hope your confusion will be clear.
Thank you
Userlevel 6
+8
You’re welcome
Reply
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.