JCE Standard Name Delegated Key
Delegated key that uses JCE StandardName values to determine behavior.
- class dynamodb_encryption_sdk.delegated_keys.jce.JceNameLocalDelegatedKey(key: bytes, algorithm: str, key_type: dynamodb_encryption_sdk.identifiers.EncryptionKeyType, key_encoding: dynamodb_encryption_sdk.identifiers.KeyEncodingType)[source]
Bases:
dynamodb_encryption_sdk.delegated_keys.DelegatedKey
Delegated key that uses JCE StandardName values to determine behavior.
Accepted algorithm names for this include:
JCE Mac names (for a signing key)
HmacSHA512
HmacSHA256
HmacSHA384
HmacSHA224
JCE Signature names (for a signing key)
SHA512withRSA
SHA256withRSA
SHA384withRSA
SHA224withRSA
JCE Cipher names (for an encryption key)
RSA
AES
AESWrap
- Parameters
key (bytes) – Raw key bytes
algorithm (str) – JCE Standard Algorithm Name
key_type (EncryptionKeyType) – Identifies what type of key is being provided
key_encoding (KeyEncodingType) – Identifies how the provided key is encoded
- property algorithm
Text description of algorithm used by this delegated key.
- classmethod generate(algorithm: str, key_length: Optional[int] = None) dynamodb_encryption_sdk.delegated_keys.jce.JceNameLocalDelegatedKey [source]
Generate an instance of this
DelegatedKey
using the specified algorithm and key length.
- property allowed_for_raw_materials
Only
JceNameLocalDelegatedKey
backed by AES keys are allowed to be used withRawDecryptionMaterials
orRawEncryptionMaterials
.- Returns
decision
- Return type