Glossary

Last updated: 2020-11-16 14:09:09

    Secret

    A secret is the sensitive credential information (i.e., database credentials, account passwords, API keys, and SSH keys) used for the identity verification of an application. You can use SSM to store various types of sensitive data, such as sensitive addresses and IP ports, as the secret content in the format of Name-Value pairs.

    Hardcoding

    Hardcoding is the software development practice of embedding data directly into the source code of a program or other executable objects.

    KMS

    Tencent Cloud Key Management Service (KMS) is a security management solution that enables you to easily create and manage keys and protect their confidentiality, integrity, and availability. It helps meet your key management and compliance needs in multi-application and multi-business scenarios. For more information, please see KMS.

    CMK

    Customer master keys (CMKs) are kept by Tencent Cloud. They are protected by a hardware security module (HSM) certified by third parties and are used to encrypt and decrypt business secrets.

    TLS protocol

    Transport Layer Security (TLS) is a protocol built on top of the TCP transport protocol. It serves the application layer, encrypting packets in the application layer before passing them down to TCP for transport.