Alibaba Cloud Data Encryption Service provides cloud hosted hardware security modules (HSMs) for Alibaba Cloud users. HSMs are hardware computing devices that process cryptographic operations and provide secure storage for cryptographic keys.
Data Encryption Service provides HSMs with the following features:
Support the management of key life cycle, including key creation, destruction, import, export, etc.
Support multiple key types.
Support symmetric key and asymmetric key for data encryption and decryption.
Support multiple digest algorithms and hash-based message authentication codes (HMACs).
Support asymmetric key signing and verifying.
Secure random data generation.
Data Encryption Service architecture