Google Cloud Key Management Service: a cloud-hosted key management service that lets you manage cryptographic keys for your cloud services the same way you do on-premises. You can generate, use, rotate, and destroy AES256, RSA 2048, RSA 3072, RSA 4096, EC P256, and EC P384 cryptographic keys. Cloud KMS is integrated with Cloud IAM and Cloud Audit Logging so that you can manage permissions on individual keys and monitor how these are used. Use Cloud KMS to protect secrets and other sensitive data that you need to store in Google Cloud Platform.
In order to use this library, you first need to go through the following steps:
- Select or create a Cloud Platform project.
- Enable billing for your project.
- Enable the Google Cloud Key Management Service.
- Setup Authentication.
Install this library in a virtual environment using venv. venv is a tool that creates isolated Python environments. These isolated environments can have separate versions of Python packages, which allows you to isolate one project's dependencies from the dependencies of other projects.
With venv, it's possible to install this library without needing system install permissions, and without clashing with the installed system dependencies.
Code samples and snippets live in the samples/ folder.
Our client libraries are compatible with all current active and maintenance versions of Python.
Python >= 3.7
Python <= 3.6
If you are using an end-of-life version of Python, we recommend that you update as soon as possible to an actively supported version.
python3 -m venv <your-env>
source <your-env>/bin/activate
pip install google-cloud-kms
py -m venv <your-env>
.\<your-env>\Scripts\activate
pip install google-cloud-kms
- Read the Client Library Documentation for Google Cloud Key Management Service to see other available methods on the client.
- Read the Google Cloud Key Management Service Product documentation to learn more about the product and see How-to Guides.
- View this README to see the full list of Cloud APIs that we cover.