AWS services or capabilities described in AWS Documentation may vary by region/location. Click Getting Started with Amazon AWS to see specific differences applicable to the China (Beijing) Region.
Note that if a caller has been granted access permissions to all keys (through, for
example, IAM user policies that grant
Decrypt permission on all resources),
then ciphertext encrypted by using keys in other accounts where the key grants access
to the caller can be decrypted. To remedy this, we recommend that you do not grant
Decrypt access in an IAM user policy. Instead grant
access only in key policies. If you must grant
Decrypt access in an IAM
user policy, you should scope the resource to specific keys or to specific trusted
Version: (assembly version)
public class DecryptRequest : AmazonKeyManagementServiceRequest IRequestEvents
The DecryptRequest type exposes the following members
Gets and sets the property CiphertextBlob.
Ciphertext to be decrypted. The blob includes metadata.
|EncryptionContext||System.Collections.Generic.Dictionary<System.String, System.String>||Gets and sets the property EncryptionContext.|
Gets and sets the property GrantTokens.
A list of grant tokens.
For more information, go to Grant Tokens in the AWS Key Management Service Developer Guide.
Supported in: 4.5, 4.0, 3.5
.NET for Windows Store apps:
Supported in: Windows 8.1, Windows 8
.NET for Windows Phone:
Supported in: Windows Phone 8.1, Windows Phone 8