DennisM
Reputation: 1
generated asymmetric key in google KMS: Private or Public?
Pretty basic question. When I create a key using google KMS, is that key public or private?
I need to develop an asymmetric key pair using HSM for a project, someone asked me, and I'm not crystal clear on that. Any help?
Upvotes: 0
Views: 193
Answers (1)
brodheim
Reputation: 38
When you create an asymmetric key using google KMS both the private and public key are created. To retrieve the public key you can use the GetPublicKey API call. https://cloud.google.com/kms/docs/reference/rest/v1/projects.locations.keyRings.cryptoKeys.cryptoKeyVersions/getPublicKey
You cannot retrieve the private key from Cloud KMS. You can only access it via API calls for AsymmetricSign or AsymmetricDecrypt.
Upvotes: 0
Related Questions
- Can I use asymmetric encryption with AWS KMS?
- GCP KMS - Elliptic curve Signature
- Data Encryption Keys and Key Encryption Keys
- How do I store a private key using Google Cloud's Cloud KMS?
- How to retain private control over the encryption keys while using Cloud services?
- Is it possible to provide asymmetric keys as your own keys (BYOK) to a cloud KMS (key management service) for any cloud providers?
- Google Cloud KMS: plaintext size limitations to encrypt by asymmetric public key
- Asymmetric keys in AWS KMS
- Google cloud KMS store custom keys
- How to manage Asymmetric (Public/Private) Keys in AWS