beginner

What is Cloud KMS in Google Cloud Platform?

Cloud KMS (Key Management Service) is a service that lets you create, manage, and use cryptographic keys to protect your data in Google Cloud.

Click to reveal answer

beginner

What is a key ring in Cloud KMS?

A key ring is a container that holds cryptographic keys. It helps organize keys by project and location.

Click to reveal answer

intermediate

What is the difference between a symmetric key and an asymmetric key in Cloud KMS?

A symmetric key uses the same key for encryption and decryption. An asymmetric key uses a pair of keys: one public to encrypt and one private to decrypt.

Click to reveal answer

intermediate

How does Cloud KMS help with security compliance?

Cloud KMS provides centralized key management, audit logs, and integrates with IAM to control who can use or manage keys, helping meet security and compliance requirements.

Click to reveal answer

beginner

What is the purpose of key rotation in Cloud KMS?

Key rotation means changing cryptographic keys regularly to reduce the risk of key compromise and improve security.

Click to reveal answer

What does Cloud KMS primarily manage?

ACryptographic keys

BVirtual machines

CNetwork firewalls

DStorage buckets

Which of the following is a container for keys in Cloud KMS?

AKey ring

BKey vault

CKey folder

DKey bucket

What type of key uses a public and private pair?

ASecret key

BSymmetric key

CAsymmetric key

DStatic key

Why is key rotation important?

ATo increase key size

BTo delete old keys

CTo speed up encryption

DTo reduce risk of key compromise

Which Google Cloud service controls who can use or manage keys in Cloud KMS?

ACloud Storage

BCloud IAM

CCloud Functions

DCloud Pub/Sub

Explain how Cloud KMS helps protect data in Google Cloud.

Describe the difference between symmetric and asymmetric keys in Cloud KMS.