AWS services or capabilities described in AWS Documentation may vary by region/location. Click Getting Started with Amazon AWS to see specific differences applicable to the China (Beijing) Region.
Note that if a caller has been granted access permissions to all keys (through, for
example, IAM user policies that grant Decrypt
permission on all resources),
then ciphertext encrypted by using keys in other accounts where the key grants access
to the caller can be decrypted. To remedy this, we recommend that you do not grant
Decrypt
access in an IAM user policy. Instead grant Decrypt
access only in key policies. If you must grant Decrypt
access in an IAM
user policy, you should scope the resource to specific keys or to specific trusted
accounts.
Namespace: Amazon.KeyManagementService.Model
Assembly: AWSSDK.dll
Version: (assembly version)
public class DecryptRequest : AmazonKeyManagementServiceRequest IRequestEvents
The DecryptRequest type exposes the following members
Name | Description | |
---|---|---|
![]() |
DecryptRequest() |
Name | Type | Description | |
---|---|---|---|
![]() |
CiphertextBlob | System.IO.MemoryStream |
Gets and sets the property CiphertextBlob.
Ciphertext to be decrypted. The blob includes metadata. |
![]() |
EncryptionContext | System.Collections.Generic.Dictionary<System.String, System.String> |
Gets and sets the property EncryptionContext.
The encryption context. If this was specified in the Encrypt function, it must be specified here or the decryption operation will fail. For more information, see Encryption Context. |
![]() |
GrantTokens | System.Collections.Generic.List<System.String> |
Gets and sets the property GrantTokens.
A list of grant tokens. For more information, go to Grant Tokens in the AWS Key Management Service Developer Guide. |
.NET Framework:
Supported in: 4.5, 4.0, 3.5
.NET for Windows Store apps:
Supported in: Windows 8.1, Windows 8
.NET for Windows Phone:
Supported in: Windows Phone 8.1, Windows Phone 8