Enum KeySpec
The key spec, represents the cryptographic configuration of keys.
Namespace: Amazon.CDK.AWS.KMS
Assembly: Amazon.CDK.Lib.dll
Syntax (csharp)
public enum KeySpecSyntax (vb)
Public Enum KeySpecRemarks
ExampleMetadata: infused
Examples
var key = new Key(this, "MyKey", new KeyProps {
KeySpec = KeySpec.ECC_SECG_P256K1, // Default to SYMMETRIC_DEFAULT
KeyUsage = KeyUsage.SIGN_VERIFY
});Synopsis
Fields
| ECC_NIST_P256 | NIST FIPS 186-4, Section 6.4, ECDSA signature using the curve specified by the key and SHA-256 for the message digest. |
| ECC_NIST_P384 | NIST FIPS 186-4, Section 6.4, ECDSA signature using the curve specified by the key and SHA-384 for the message digest. |
| ECC_NIST_P521 | NIST FIPS 186-4, Section 6.4, ECDSA signature using the curve specified by the key and SHA-512 for the message digest. |
| ECC_SECG_P256K1 | Standards for Efficient Cryptography 2, Section 2.4.1, ECDSA signature on the Koblitz curve. |
| HMAC_224 | Hash-Based Message Authentication Code as defined in RFC 2104 using the message digest function SHA224. |
| HMAC_256 | Hash-Based Message Authentication Code as defined in RFC 2104 using the message digest function SHA256. |
| HMAC_384 | Hash-Based Message Authentication Code as defined in RFC 2104 using the message digest function SHA384. |
| HMAC_512 | Hash-Based Message Authentication Code as defined in RFC 2104 using the message digest function SHA512. |
| ML_DSA_44 | ML-DSA-44 lattice-based digital signature algorithm. |
| ML_DSA_65 | ML-DSA-65 lattice-based digital signature algorithm. |
| ML_DSA_87 | ML-DSA-87 lattice-based digital signature algorithm. |
| RSA_2048 | RSA with 2048 bits of key. |
| RSA_3072 | RSA with 3072 bits of key. |
| RSA_4096 | RSA with 4096 bits of key. |
| SM2 | Elliptic curve key spec available only in China Regions. |
| SYMMETRIC_DEFAULT | The default key spec. |
Fields
| Name | Description |
|---|---|
| ECC_NIST_P256 | NIST FIPS 186-4, Section 6.4, ECDSA signature using the curve specified by the key and SHA-256 for the message digest. |
| ECC_NIST_P384 | NIST FIPS 186-4, Section 6.4, ECDSA signature using the curve specified by the key and SHA-384 for the message digest. |
| ECC_NIST_P521 | NIST FIPS 186-4, Section 6.4, ECDSA signature using the curve specified by the key and SHA-512 for the message digest. |
| ECC_SECG_P256K1 | Standards for Efficient Cryptography 2, Section 2.4.1, ECDSA signature on the Koblitz curve. |
| HMAC_224 | Hash-Based Message Authentication Code as defined in RFC 2104 using the message digest function SHA224. |
| HMAC_256 | Hash-Based Message Authentication Code as defined in RFC 2104 using the message digest function SHA256. |
| HMAC_384 | Hash-Based Message Authentication Code as defined in RFC 2104 using the message digest function SHA384. |
| HMAC_512 | Hash-Based Message Authentication Code as defined in RFC 2104 using the message digest function SHA512. |
| ML_DSA_44 | ML-DSA-44 lattice-based digital signature algorithm. |
| ML_DSA_65 | ML-DSA-65 lattice-based digital signature algorithm. |
| ML_DSA_87 | ML-DSA-87 lattice-based digital signature algorithm. |
| RSA_2048 | RSA with 2048 bits of key. |
| RSA_3072 | RSA with 3072 bits of key. |
| RSA_4096 | RSA with 4096 bits of key. |
| SM2 | Elliptic curve key spec available only in China Regions. |
| SYMMETRIC_DEFAULT | The default key spec. |