| Package | Description |
|---|---|
| com.amazonaws.encryptionsdk |
Contains
AwsCrypto, the primary entry-point to the Aws
Encryption SDK. |
| com.amazonaws.encryptionsdk.caching | |
| com.amazonaws.encryptionsdk.internal |
Contains the internal classes that handle the cryptographic defined by the message formats and
algorithms.
|
| Modifier and Type | Class and Description |
|---|---|
class |
DefaultCryptoMaterialsManager
The default implementation of
CryptoMaterialsManager, used implicitly when passing a
MasterKeyProvider to methods in AwsCrypto. |
| Modifier and Type | Method and Description |
|---|---|
CryptoInputStream<?> |
AwsCrypto.createDecryptingStream(CryptoMaterialsManager materialsManager,
InputStream is)
Returns a
CryptoInputStream which decrypts the data after reading it from the
underlying InputStream. |
CryptoOutputStream<?> |
AwsCrypto.createDecryptingStream(CryptoMaterialsManager materialsManager,
OutputStream os)
Returns a
CryptoOutputStream which decrypts the data prior to passing it onto the
underlying OutputStream. |
CryptoInputStream<?> |
AwsCrypto.createEncryptingStream(CryptoMaterialsManager materialsManager,
InputStream is)
Returns the equivalent to calling
AwsCrypto.createEncryptingStream(CryptoMaterialsManager,
InputStream, Map) with an empty encryptionContext. |
CryptoInputStream<?> |
AwsCrypto.createEncryptingStream(CryptoMaterialsManager materialsManager,
InputStream is,
Map<String,String> encryptionContext)
Returns a
CryptoInputStream which encrypts the data after reading it from the
underlying InputStream. |
CryptoOutputStream<?> |
AwsCrypto.createEncryptingStream(CryptoMaterialsManager materialsManager,
OutputStream os)
Returns the equivalent to calling
AwsCrypto.createEncryptingStream(CryptoMaterialsManager,
OutputStream, Map) with an empty encryptionContext. |
CryptoOutputStream<?> |
AwsCrypto.createEncryptingStream(CryptoMaterialsManager materialsManager,
OutputStream os,
Map<String,String> encryptionContext)
Returns a
CryptoOutputStream which encrypts the data prior to passing it onto the
underlying OutputStream. |
CryptoInputStream<?> |
AwsCrypto.createUnsignedMessageDecryptingStream(CryptoMaterialsManager materialsManager,
InputStream is)
Returns a
CryptoInputStream which decrypts the data after reading it from the
underlying InputStream. |
CryptoOutputStream<?> |
AwsCrypto.createUnsignedMessageDecryptingStream(CryptoMaterialsManager materialsManager,
OutputStream os)
Returns a
CryptoOutputStream which decrypts the data prior to passing it onto the
underlying OutputStream. |
CryptoResult<byte[],?> |
AwsCrypto.decryptData(CryptoMaterialsManager materialsManager,
byte[] ciphertext)
Decrypts the provided ciphertext by delegating to the provided materialsManager to obtain the
decrypted
DataKey. |
CryptoResult<byte[],?> |
AwsCrypto.decryptData(CryptoMaterialsManager materialsManager,
ParsedCiphertext ciphertext) |
CryptoResult<String,?> |
AwsCrypto.decryptString(CryptoMaterialsManager provider,
String ciphertext)
Deprecated.
Use the
AwsCrypto.decryptData(CryptoMaterialsManager, byte[]) and AwsCrypto.encryptData(CryptoMaterialsManager, byte[], Map) APIs instead. encryptString and
decryptString work as expected if you use them together. However, to work with
other language implementations of the AWS Encryption SDK, you need to base64-decode the
output of encryptString and base64-encode the input to decryptString. These
deprecated APIs will be removed in the future. |
CryptoResult<byte[],?> |
AwsCrypto.encryptData(CryptoMaterialsManager materialsManager,
byte[] plaintext)
Returns the equivalent to calling
AwsCrypto.encryptData(CryptoMaterialsManager, byte[], Map)
with an empty encryptionContext. |
CryptoResult<byte[],?> |
AwsCrypto.encryptData(CryptoMaterialsManager materialsManager,
byte[] plaintext,
Map<String,String> encryptionContext)
Returns an encrypted form of
plaintext that has been protected with DataKeys that are in turn protected by the given CryptoMaterialsProvider. |
CryptoResult<String,?> |
AwsCrypto.encryptString(CryptoMaterialsManager materialsManager,
String plaintext)
Deprecated.
Use the
AwsCrypto.encryptData(CryptoMaterialsManager, byte[]) and AwsCrypto.decryptData(CryptoMaterialsManager, byte[]) APIs instead. encryptString and
decryptString work as expected if you use them together. However, to work with
other language implementations of the AWS Encryption SDK, you need to base64-decode the
output of encryptString and base64-encode the input to decryptString. These
deprecated APIs will be removed in the future. |
CryptoResult<String,?> |
AwsCrypto.encryptString(CryptoMaterialsManager materialsManager,
String plaintext,
Map<String,String> encryptionContext)
Deprecated.
Use the
AwsCrypto.encryptData(CryptoMaterialsManager, byte[], Map) and AwsCrypto.decryptData(CryptoMaterialsManager, byte[]) APIs instead. encryptString and
decryptString work as expected if you use them together. However, to work with
other language implementations of the AWS Encryption SDK, you need to base64-decode the
output of encryptString and base64-encode the input to decryptString. These
deprecated APIs will be removed in the future. |
long |
AwsCrypto.estimateCiphertextSize(CryptoMaterialsManager materialsManager,
int plaintextSize)
Returns the equivalent to calling
AwsCrypto.estimateCiphertextSize(CryptoMaterialsManager, int,
Map) with an empty encryptionContext. |
long |
AwsCrypto.estimateCiphertextSize(CryptoMaterialsManager materialsManager,
int plaintextSize,
Map<String,String> encryptionContext)
Returns the best estimate for the output length of encrypting a plaintext with the provided
plaintextSize and encryptionContext. |
| Modifier and Type | Class and Description |
|---|---|
class |
CachingCryptoMaterialsManager
The CachingCryptoMaterialsManager wraps another
CryptoMaterialsManager, and caches its
results. |
| Modifier and Type | Method and Description |
|---|---|
CachingCryptoMaterialsManager.Builder |
CachingCryptoMaterialsManager.Builder.withBackingMaterialsManager(CryptoMaterialsManager backingCMM)
Sets the
CryptoMaterialsManager that should be queried when the CachingCryptoMaterialsManager (CCMM) incurs a cache miss. |
| Modifier and Type | Method and Description |
|---|---|
static DecryptionHandler<?> |
DecryptionHandler.create(CryptoMaterialsManager materialsManager,
CiphertextHeaders headers,
CommitmentPolicy commitmentPolicy,
SignaturePolicy signaturePolicy,
int maxEncryptedDataKeys)
Deprecated.
This version may have to recalculate the number of bytes already parsed, which adds
a performance penalty. Use
DecryptionHandler.create(CryptoMaterialsManager, ParsedCiphertext,
CommitmentPolicy, SignaturePolicy, int) instead, which makes the parsed byte count
directly available instead. |
static DecryptionHandler<?> |
DecryptionHandler.create(CryptoMaterialsManager materialsManager,
CommitmentPolicy commitmentPolicy,
SignaturePolicy signaturePolicy,
int maxEncryptedDataKeys)
Create a decryption handler using the provided materials manager.
|
static DecryptionHandler<?> |
DecryptionHandler.create(CryptoMaterialsManager materialsManager,
ParsedCiphertext headers,
CommitmentPolicy commitmentPolicy,
SignaturePolicy signaturePolicy,
int maxEncryptedDataKeys)
Create a decryption handler using the provided materials manager and already parsed
headers. |
Copyright © 2023. All rights reserved.