Skip to content

/AWS1/CL_DZNENCRYPTIONCONF

The encryption configuration details.

CONSTRUCTOR

IMPORTING

Optional arguments:

iv_kmskeyarn TYPE /AWS1/DZNSTRING /AWS1/DZNSTRING

The Amazon Resource Name (ARN) of the KMS key to use for encryption. This field is required only when sseAlgorithm is set to aws:kms.

iv_ssealgorithm TYPE /AWS1/DZNSTRING /AWS1/DZNSTRING

The server-side encryption algorithm to use. Valid values are AES256 for S3-managed encryption keys, or aws:kms for Amazon Web Services KMS-managed encryption keys. If you choose SSE-KMS encryption you must grant the S3 Tables maintenance principal access to your KMS key. For more information, see Permissions requirements for S3 Tables SSE-KMS encryption.

Queryable Attributes

kmsKeyArn

The Amazon Resource Name (ARN) of the KMS key to use for encryption. This field is required only when sseAlgorithm is set to aws:kms.

Accessible with the following methods

Method Description
GET_KMSKEYARN() Getter for KMSKEYARN, with configurable default
ASK_KMSKEYARN() Getter for KMSKEYARN w/ exceptions if field has no value
HAS_KMSKEYARN() Determine if KMSKEYARN has a value

sseAlgorithm

The server-side encryption algorithm to use. Valid values are AES256 for S3-managed encryption keys, or aws:kms for Amazon Web Services KMS-managed encryption keys. If you choose SSE-KMS encryption you must grant the S3 Tables maintenance principal access to your KMS key. For more information, see Permissions requirements for S3 Tables SSE-KMS encryption.

Accessible with the following methods

Method Description
GET_SSEALGORITHM() Getter for SSEALGORITHM, with configurable default
ASK_SSEALGORITHM() Getter for SSEALGORITHM w/ exceptions if field has no value
HAS_SSEALGORITHM() Determine if SSEALGORITHM has a value