- Product Introduction
- Purchase Guide
- Getting Started
- Operation Guide
- Best Practices
- API Documentation
- History
- Introduction
- API Category
- Making API Requests
- Data Security APIs
- PutSecretValue
- RestoreSecret
- ListSecretVersionIds
- GetServiceStatus
- CreateSSHKeyPairSecret
- UpdateRotationStatus
- CreateSecret
- DeleteSecret
- DeleteSecretVersion
- DescribeSecret
- DisableSecret
- EnableSecret
- GetRegions
- GetSecretValue
- UpdateDescription
- UpdateSecret
- GetSSHKeyPairValue
- CreateProductSecret
- DescribeAsyncRequestInfo
- DescribeRotationDetail
- RotateProductSecret
- DescribeRotationHistory
- ListSecrets
- Other APIs
- Data Types
- Error Codes
- FAQs
- Service Level Agreement
- Contact Us
- Glossary
- Product Introduction
- Purchase Guide
- Getting Started
- Operation Guide
- Best Practices
- API Documentation
- History
- Introduction
- API Category
- Making API Requests
- Data Security APIs
- PutSecretValue
- RestoreSecret
- ListSecretVersionIds
- GetServiceStatus
- CreateSSHKeyPairSecret
- UpdateRotationStatus
- CreateSecret
- DeleteSecret
- DeleteSecretVersion
- DescribeSecret
- DisableSecret
- EnableSecret
- GetRegions
- GetSecretValue
- UpdateDescription
- UpdateSecret
- GetSSHKeyPairValue
- CreateProductSecret
- DescribeAsyncRequestInfo
- DescribeRotationDetail
- RotateProductSecret
- DescribeRotationHistory
- ListSecrets
- Other APIs
- Data Types
- Error Codes
- FAQs
- Service Level Agreement
- Contact Us
- Glossary
Secrets Manager Overview
Secrets Manager (SSM) is a management service that enables you to create, retrieve, update, and delete secrets through their lifecycle. You can use SSM together with resource-level role authorization and comprehensive audit control to centrally manage sensitive secrets easily. Users and applications can call SSM APIs to avoid risks of sensitive configuration and sensitive secret hardcoding, and avoid sensitive information leakage as well as business risks caused by out-of-control permissions.
Strengths
Enterprise-level secret management
SSM facilitates the management of sensitive secrets, avoiding plaintext leakage caused by hardcoding and business risks caused by out-of-control permissions.
Full lifecycle management
You can use SSM to easily manage secrets through their lifecycle, such as creating, retrieving, updating, deleting, and managing permissions for secrets. You can use SSM together with resource-level role authorization and comprehensive audit control to centrally manage sensitive secrets easily.
High security and reliability
SSM adopts the clustered deployment mode. It uses the distributed database storage system to implement data storage, disaster recovery, and backup. With SSM, business users can create the same secrets in different regions to achieve cross-region disaster recovery.
Encrypted storage
Secrets are encrypted and stored by Tencent Cloud Key Management Service (KMS). Encryption keys are generated and protected by a hardware security module (HSM) certified by third parties. During secret retrieval, secrets are securely transferred by TLS to the local server.
Pay-as-you-go
SSM offers pay-as-you-go pricing. You will be billed based on the number of managed secrets and API calls in SSM. No minimum fee or setting fee is required. For more information, please see Purchase Guide.
Yes
No
Was this page helpful?