Namespaces

data_key	Input data key (symmetric key material).
message_id	Unique per-message identifier.
output	Output buffer to receive the derived key. Must be pre-sized appropriately.

Returns: true on success, false on failure.

◆ derive_encryption_key()

AWS_S3ENCRYPTION_API bool Aws::S3Encryption::derive_encryption_key ( const Aws::Utils::CryptoBuffer & data_key,

const Aws::Utils::CryptoBuffer & message_id,

Aws::Utils::CryptoBuffer & output

)

Derive an encryption key from a given data key and message ID using HKDF-SHA512.

Parameters

data_key	Input data key (symmetric key material).
message_id	Unique per-message identifier.
output	Output buffer to receive the derived key. Must be pre-sized appropriately.

Returns: true on success, false on failure.

Variable Documentation

◆ AES_GCM_IV_BYTES

const size_t Aws::S3Encryption::AES_GCM_IV_BYTES = 12

static

Definition at line 72 of file DataHandler.h.

◆ AES_GCM_KEY_BYTES

const size_t Aws::S3Encryption::AES_GCM_KEY_BYTES = 32

static

Definition at line 73 of file DataHandler.h.

◆ AES_GCM_TAG_BYTES

const size_t Aws::S3Encryption::AES_GCM_TAG_BYTES = 16

static

Definition at line 74 of file DataHandler.h.

◆ AES_KEY_WRAP_ENCRYPTED_CEK_BYTES

const size_t Aws::S3Encryption::AES_KEY_WRAP_ENCRYPTED_CEK_BYTES = 40

static

Definition at line 75 of file DataHandler.h.

◆ COMMITMENT_KEY_BYTES

constexpr size_t Aws::S3Encryption::COMMITMENT_KEY_BYTES = 28

constexpr

Definition at line 16 of file HKDF.h.

◆ COMMITMENT_KEY_INFO

const char* Aws::S3Encryption::COMMITMENT_KEY_INFO

extern

◆ COMMITMENT_KEY_INFO_LEN

const size_t Aws::S3Encryption::COMMITMENT_KEY_INFO_LEN

extern

◆ CONTENT_CIPHER_V3

const char* const Aws::S3Encryption::CONTENT_CIPHER_V3 = "x-amz-c"

static

Definition at line 64 of file DataHandler.h.

◆ CONTENT_CRYPTO_SCHEME_HEADER

const char* const Aws::S3Encryption::CONTENT_CRYPTO_SCHEME_HEADER = "x-amz-cek-alg"

static

Definition at line 22 of file DataHandler.h.

◆ CONTENT_KEY_HEADER

const char* const Aws::S3Encryption::CONTENT_KEY_HEADER = "x-amz-key-v2"

static

Definition at line 19 of file DataHandler.h.

◆ CRYPTO_TAG_LENGTH_HEADER

const char* const Aws::S3Encryption::CRYPTO_TAG_LENGTH_HEADER = "x-amz-tag-len"

static

Definition at line 23 of file DataHandler.h.

◆ DEPRECATED_CONTENT_KEY_HEADER

const char* const Aws::S3Encryption::DEPRECATED_CONTENT_KEY_HEADER = "x-amz-key"

static

Definition at line 18 of file DataHandler.h.

◆ ENCRYPTED_DATA_KEY_ALGORITHM_V3

const char* const Aws::S3Encryption::ENCRYPTED_DATA_KEY_ALGORITHM_V3 = "x-amz-w"

static

Definition at line 68 of file DataHandler.h.

◆ ENCRYPTED_DATA_KEY_V3

const char* const Aws::S3Encryption::ENCRYPTED_DATA_KEY_V3 = "x-amz-3"

static

Definition at line 65 of file DataHandler.h.

◆ ENCRYPTION_CONTEXT_V3

const char* const Aws::S3Encryption::ENCRYPTION_CONTEXT_V3 = "x-amz-t"

static

Definition at line 67 of file DataHandler.h.

◆ ENCRYPTION_KEY_BYTES

constexpr size_t Aws::S3Encryption::ENCRYPTION_KEY_BYTES = 32

constexpr

Definition at line 17 of file HKDF.h.

◆ ENCRYPTION_KEY_INFO

const char* Aws::S3Encryption::ENCRYPTION_KEY_INFO

extern

◆ ENCRYPTION_KEY_INFO_LEN

const size_t Aws::S3Encryption::ENCRYPTION_KEY_INFO_LEN

extern

◆ INSTRUCTION_FILE_HEADER

const char* const Aws::S3Encryption::INSTRUCTION_FILE_HEADER = "x-amz-crypto-instr-file"

static

Definition at line 25 of file DataHandler.h.

◆ IV_HEADER

const char* const Aws::S3Encryption::IV_HEADER = "x-amz-iv"

static

Definition at line 20 of file DataHandler.h.

◆ KEY_COMMITMENT_V3

const char* const Aws::S3Encryption::KEY_COMMITMENT_V3 = "x-amz-d"

static

Definition at line 69 of file DataHandler.h.

◆ KEY_WRAP_ALGORITHM

const char* const Aws::S3Encryption::KEY_WRAP_ALGORITHM = "x-amz-wrap-alg"

static

Definition at line 24 of file DataHandler.h.

◆ MAT_DESC_V3

const char* const Aws::S3Encryption::MAT_DESC_V3 = "x-amz-m"

static

Definition at line 66 of file DataHandler.h.

◆ MATERIALS_DESCRIPTION_HEADER

const char* const Aws::S3Encryption::MATERIALS_DESCRIPTION_HEADER = "x-amz-matdesc"

static

Definition at line 21 of file DataHandler.h.

◆ MESSAGE_ID_BYTES

constexpr size_t Aws::S3Encryption::MESSAGE_ID_BYTES = 28

constexpr

Definition at line 15 of file HKDF.h.

◆ MESSAGE_ID_V3

const char* const Aws::S3Encryption::MESSAGE_ID_V3 = "x-amz-i"

static

Definition at line 70 of file DataHandler.h.

◆ MetadataHandler_Tag

const char* const Aws::S3Encryption::MetadataHandler_Tag = "MetadataHandler"

static

Definition at line 17 of file DataHandler.h.

AWS SDK for C++

AWS SDK for C++ Version 1.11.717

Namespaces

Classes

Typedefs

Enumerations

Functions

Variables

Typedef Documentation

◆ S3EncryptionGetObjectOutcome

◆ S3EncryptionPutObjectOutcome

Enumeration Type Documentation

◆ AlgorithmSuite

◆ CommitmentPolicy

◆ CryptoMode

◆ RangeGetMode

◆ SecurityProfile

◆ StorageMethod

Function Documentation

◆ BuildS3EncryptionError()

◆ constant_time_equal()

◆ derive_commitment_key()

◆ derive_encryption_key()

Variable Documentation

◆ AES_GCM_IV_BYTES

◆ AES_GCM_KEY_BYTES

◆ AES_GCM_TAG_BYTES

◆ AES_KEY_WRAP_ENCRYPTED_CEK_BYTES

◆ COMMITMENT_KEY_BYTES

◆ COMMITMENT_KEY_INFO

◆ COMMITMENT_KEY_INFO_LEN

◆ CONTENT_CIPHER_V3

◆ CONTENT_CRYPTO_SCHEME_HEADER

◆ CONTENT_KEY_HEADER

◆ CRYPTO_TAG_LENGTH_HEADER

◆ DEPRECATED_CONTENT_KEY_HEADER

◆ ENCRYPTED_DATA_KEY_ALGORITHM_V3

◆ ENCRYPTED_DATA_KEY_V3

◆ ENCRYPTION_CONTEXT_V3

◆ ENCRYPTION_KEY_BYTES

◆ ENCRYPTION_KEY_INFO

◆ ENCRYPTION_KEY_INFO_LEN

◆ INSTRUCTION_FILE_HEADER

◆ IV_HEADER

◆ KEY_COMMITMENT_V3

◆ KEY_WRAP_ALGORITHM

◆ MAT_DESC_V3

◆ MATERIALS_DESCRIPTION_HEADER

◆ MESSAGE_ID_BYTES

◆ MESSAGE_ID_V3

◆ MetadataHandler_Tag