JCE Standard Name Delegated Key

Delegated key that uses JCE StandardName values to determine behavior.

class dynamodb_encryption_sdk.delegated_keys.jce.JceNameLocalDelegatedKey(key: bytes, algorithm: str, key_type: dynamodb_encryption_sdk.identifiers.EncryptionKeyType, key_encoding: dynamodb_encryption_sdk.identifiers.KeyEncodingType)[source]

Bases: dynamodb_encryption_sdk.delegated_keys.DelegatedKey

Delegated key that uses JCE StandardName values to determine behavior.

Accepted algorithm names for this include:

Parameters
  • key (bytes) – Raw key bytes

  • algorithm (str) – JCE Standard Algorithm Name

  • key_type (EncryptionKeyType) – Identifies what type of key is being provided

  • key_encoding (KeyEncodingType) – Identifies how the provided key is encoded

property algorithm

Text description of algorithm used by this delegated key.

classmethod generate(algorithm: str, key_length: Optional[int] = None) dynamodb_encryption_sdk.delegated_keys.jce.JceNameLocalDelegatedKey[source]

Generate an instance of this DelegatedKey using the specified algorithm and key length.

Parameters
  • algorithm (str) – Text description of algorithm to be used

  • key_length (int) – Size in bits of key to generate

Returns

Generated delegated key

Return type

DelegatedKey

property allowed_for_raw_materials

Only JceNameLocalDelegatedKey backed by AES keys are allowed to be used with RawDecryptionMaterials or RawEncryptionMaterials.

Returns

decision

Return type

bool