AWS services or capabilities described in AWS Documentation may vary by region/location. Click Getting Started with Amazon AWS to see specific differences applicable to the China (Beijing) Region.
Note that if a caller has been granted access permissions to all keys (through, for
example, IAM user policies that grant Decrypt
permission on all resources),
then ciphertext encrypted by using keys in other accounts where the key grants access
to the caller can be decrypted. To remedy this, we recommend that you do not grant
Decrypt
access in an IAM user policy. Instead grant Decrypt
access only in key policies. If you must grant Decrypt
access in an IAM
user policy, you should scope the resource to specific keys or to specific trusted
accounts.
Namespace: Amazon.KeyManagementService
Assembly: AWSSDK.dll
Version: (assembly version)
public abstract DecryptResponse Decrypt( DecryptRequest request )
Container for the necessary parameters to execute the Decrypt service method.
Exception | Condition |
---|---|
DependencyTimeoutException | The system timed out while trying to fulfill the request. The request can be retried. |
DisabledException | The request was rejected because the specified key was marked as disabled. |
InvalidCiphertextException | The request was rejected because the specified ciphertext has been corrupted or is otherwise invalid. |
InvalidGrantTokenException | The request was rejected because a grant token provided as part of the request is invalid. |
KeyUnavailableException | The request was rejected because the key was not available. The request can be retried. |
KMSInternalException | The request was rejected because an internal exception occurred. The request can be retried. |
KMSInvalidStateException | The request was rejected because the state of the specified resource is not valid for this request. For more information about how key state affects the use of a customer master key (CMK), go to How Key State Affects the Use of a Customer Master Key in the AWS Key Management Service Developer Guide. |
NotFoundException | The request was rejected because the specified entity or resource could not be found. |
.NET Framework:
Supported in: 4.5, 4.0, 3.5