Class CfnDeliveryStream.DeliveryStreamEncryptionConfigurationInputProperty
Specifies the type and Amazon Resource Name (ARN) of the CMK to use for Server-Side Encryption (SSE).
Inherited Members
Namespace: Amazon.CDK.AWS.KinesisFirehose
Assembly: Amazon.CDK.Lib.dll
Syntax (csharp)
public class CfnDeliveryStream.DeliveryStreamEncryptionConfigurationInputProperty : CfnDeliveryStream.IDeliveryStreamEncryptionConfigurationInputPropertySyntax (vb)
Public Class CfnDeliveryStream.DeliveryStreamEncryptionConfigurationInputProperty Implements CfnDeliveryStream.IDeliveryStreamEncryptionConfigurationInputPropertyRemarks
ExampleMetadata: fixture=_generated
Examples
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
using Amazon.CDK.AWS.KinesisFirehose;
var deliveryStreamEncryptionConfigurationInputProperty = new DeliveryStreamEncryptionConfigurationInputProperty {
KeyType = "keyType",
// the properties below are optional
KeyArn = "keyArn"
};Synopsis
Constructors
| DeliveryStreamEncryptionConfigurationInputProperty() | Specifies the type and Amazon Resource Name (ARN) of the CMK to use for Server-Side Encryption (SSE). |
Properties
| KeyArn | If you set |
| KeyType | Indicates the type of customer master key (CMK) to use for encryption. |
Constructors
DeliveryStreamEncryptionConfigurationInputProperty()
Specifies the type and Amazon Resource Name (ARN) of the CMK to use for Server-Side Encryption (SSE).
public DeliveryStreamEncryptionConfigurationInputProperty()Remarks
ExampleMetadata: fixture=_generated
Examples
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
using Amazon.CDK.AWS.KinesisFirehose;
var deliveryStreamEncryptionConfigurationInputProperty = new DeliveryStreamEncryptionConfigurationInputProperty {
KeyType = "keyType",
// the properties below are optional
KeyArn = "keyArn"
};Properties
KeyArn
If you set KeyType to CUSTOMER_MANAGED_CMK , you must specify the Amazon Resource Name (ARN) of the CMK.
public string? KeyArn { get; set; }Property Value
Remarks
If you set KeyType to AWS _OWNED_CMK , Firehose uses a service-account CMK.
KeyType
Indicates the type of customer master key (CMK) to use for encryption.
public string KeyType { get; set; }Property Value
Remarks
The default setting is AWS_OWNED_CMK . For more information about CMKs, see Customer Master Keys (CMKs) .
You can use a CMK of type CUSTOMER_MANAGED_CMK to encrypt up to 500 delivery streams.
To encrypt your delivery stream, use symmetric CMKs. Kinesis Data Firehose doesn't support asymmetric CMKs. For information about symmetric and asymmetric CMKs, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/symm-asymm-concepts.html">About Symmetric and Asymmetric CMKs</a> in the AWS Key Management Service developer guide.