Wrapped Cryptographic Materials
Cryptographic materials to use ephemeral content encryption keys wrapped by delegated keys.
- class dynamodb_encryption_sdk.materials.wrapped.WrappedCryptographicMaterials(signing_key: dynamodb_encryption_sdk.delegated_keys.DelegatedKey, wrapping_key: Optional[dynamodb_encryption_sdk.delegated_keys.DelegatedKey] = None, unwrapping_key: Optional[dynamodb_encryption_sdk.delegated_keys.DelegatedKey] = None, material_description: Optional[Dict[str, str]] = None)[source]
Bases:
dynamodb_encryption_sdk.materials.CryptographicMaterials
Encryption/decryption key is a content key stored in the material description, wrapped by the wrapping key.
- Parameters
signing_key (DelegatedKey) – Delegated key used as signing and verification key
wrapping_key (DelegatedKey) – Delegated key used to wrap content key
Note
wrapping_key
must be provided if material description contains a wrapped content key- Parameters
unwrapping_key (DelegatedKey) – Delegated key used to unwrap content key
Note
unwrapping_key
must be provided if material description does not contain a wrapped content key- Parameters
material_description (dict) – Material description to use with these cryptographic materials
- property material_description
Material description to use with these cryptographic materials.
- Returns
Material description
- Return type
- property encryption_key
Content key used for encrypting attributes.
- Returns
Encryption key
- Return type
DelegatedKey
- property decryption_key
Content key used for decrypting attributes.
- Returns
Decryption key
- Return type
DelegatedKey
- property signing_key
Delegated key used for calculating digital signatures.
- Returns
Signing key
- Return type
DelegatedKey
- property verification_key
Delegated key used for verifying digital signatures.
- Returns
Verification key
- Return type
DelegatedKey