AWSKMSGenerateDataKeyPairWithoutPlaintextResponse

@interface AWSKMSGenerateDataKeyPairWithoutPlaintextResponse
  • Specifies the CMK that encrypted the private key in the data key pair. You must specify a symmetric CMK. You cannot use an asymmetric CMK. To get the type of your CMK, use the DescribeKey operation.

    To specify a CMK, use its key ID, Amazon Resource Name (ARN), alias name, or alias ARN. When using an alias name, prefix it with "alias/".

    For example:

    • Key ID: 1234abcd-12ab-34cd-56ef-1234567890ab

    • Key ARN: arn:aws:kms:us-east-2:111122223333:key/1234abcd-12ab-34cd-56ef-1234567890ab

    • Alias name: alias/ExampleAlias

    • Alias ARN: arn:aws:kms:us-east-2:111122223333:alias/ExampleAlias

    To get the key ID and key ARN for a CMK, use ListKeys or DescribeKey. To get the alias name and alias ARN, use ListAliases.

    Declaration

    Objective-C

    @property (readwrite, strong, nonatomic) NSString *_Nullable keyId;

    Swift

    var keyId: String? { get set }
  • The type of data key pair that was generated.

    Declaration

    Objective-C

    @property (assign, readwrite, nonatomic) AWSKMSDataKeyPairSpec keyPairSpec;

    Swift

    var keyPairSpec: AWSKMSDataKeyPairSpec { get set }
  • The encrypted copy of the private key. When you use the HTTP API or the AWS CLI, the value is Base64-encoded. Otherwise, it is not Base64-encoded.

    Declaration

    Objective-C

    @property (readwrite, strong, nonatomic)
        NSData *_Nullable privateKeyCiphertextBlob;

    Swift

    var privateKeyCiphertextBlob: Data? { get set }
  • The public key (in plaintext).

    Declaration

    Objective-C

    @property (readwrite, strong, nonatomic) NSData *_Nullable publicKey;

    Swift

    var publicKey: Data? { get set }