AWSKMSGenerateDataKeyResponse

@interface AWSKMSGenerateDataKeyResponse
  • The encrypted copy of the data key. When you use the HTTP API or the AWS CLI, the value is Base64-encoded. Otherwise, it is not Base64-encoded.

    Declaration

    Objective-C

    @property (readwrite, strong, nonatomic) NSData *_Nullable ciphertextBlob;

    Swift

    var ciphertextBlob: Data? { get set }
  • The identifier of the CMK that encrypted the data key.

    Declaration

    Objective-C

    @property (readwrite, strong, nonatomic) NSString *_Nullable keyId;

    Swift

    var keyId: String? { get set }
  • The plaintext data key. When you use the HTTP API or the AWS CLI, the value is Base64-encoded. Otherwise, it is not Base64-encoded. Use this data key to encrypt your data outside of KMS. Then, remove it from memory as soon as possible.

    Declaration

    Objective-C

    @property (readwrite, strong, nonatomic) NSData *_Nullable plaintext;

    Swift

    var plaintext: Data? { get set }