AWS SDK Version 2 for .NET
API Reference

AWS services or capabilities described in AWS Documentation may vary by region/location. Click Getting Started with Amazon AWS to see specific differences applicable to the China (Beijing) Region.

.NET Framework 3.5
 
Container for the parameters to the ReEncrypt operation. Encrypts data on the server side with a new customer master key without exposing the plaintext of the data on the client side. The data is first decrypted and then encrypted. This operation can also be used to change the encryption context of a ciphertext.

Unlike other actions, ReEncrypt is authorized twice - once as ReEncryptFrom on the source key and once as ReEncryptTo on the destination key. We therefore recommend that you include the "action":"kms:ReEncrypt*" statement in your key policies to permit re-encryption from or to the key. The statement is included automatically when you authorize use of the key through the console but must be included manually when you set a policy by using the PutKeyPolicy function.

Inheritance Hierarchy

System.Object
  Amazon.Runtime.AmazonWebServiceRequest
    Amazon.KeyManagementService.AmazonKeyManagementServiceRequest
      Amazon.KeyManagementService.Model.ReEncryptRequest

Namespace: Amazon.KeyManagementService.Model
Assembly: AWSSDK.dll
Version: (assembly version)

Syntax

C#
public class ReEncryptRequest : AmazonKeyManagementServiceRequest
         IRequestEvents

The ReEncryptRequest type exposes the following members

Constructors

NameDescription
Public Method ReEncryptRequest()

Properties

NameTypeDescription
Public Property CiphertextBlob System.IO.MemoryStream Gets and sets the property CiphertextBlob.

Ciphertext of the data to re-encrypt.

Public Property DestinationEncryptionContext System.Collections.Generic.Dictionary<System.String, System.String> Gets and sets the property DestinationEncryptionContext.

Encryption context to be used when the data is re-encrypted.

Public Property DestinationKeyId System.String Gets and sets the property DestinationKeyId.

A unique identifier for the customer master key used to re-encrypt the data. This value can be a globally unique identifier, a fully specified ARN to either an alias or a key, or an alias name prefixed by "alias/".

  • Key ARN Example - arn:aws:kms:us-east-1:123456789012:key/12345678-1234-1234-1234-123456789012
  • Alias ARN Example - arn:aws:kms:us-east-1:123456789012:alias/MyAliasName
  • Globally Unique Key ID Example - 12345678-1234-1234-1234-123456789012
  • Alias Name Example - alias/MyAliasName

Public Property GrantTokens System.Collections.Generic.List<System.String> Gets and sets the property GrantTokens.

A list of grant tokens.

For more information, go to Grant Tokens in the AWS Key Management Service Developer Guide.

Public Property SourceEncryptionContext System.Collections.Generic.Dictionary<System.String, System.String> Gets and sets the property SourceEncryptionContext.

Encryption context used to encrypt and decrypt the data specified in the CiphertextBlob parameter.

Version Information

.NET Framework:
Supported in: 4.5, 4.0, 3.5

.NET for Windows Store apps:
Supported in: Windows 8.1, Windows 8

.NET for Windows Phone:
Supported in: Windows Phone 8.1, Windows Phone 8