RecipientInfo - Amazon Key Management Service
ContentsSee Also
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

RecipientInfo

Contains information about the party that receives the response from the API operation.

This data type is designed to support Amazon Nitro Enclaves and Amazon NitroTPM, which lets you create an attested environment in Amazon EC2. For information about the interaction between Amazon KMS and Amazon Nitro Enclaves or Amazon NitroTPM, see Cryptographic attestation support in Amazon KMS in the Amazon Key Management Service Developer Guide.

Contents

Note

In the following list, the required parameters are described first.

AttestationDocument

The attestation document for an Amazon Nitro Enclave or a NitroTPM. This document includes the enclave's public key.

Type: Base64-encoded binary data object

Length Constraints: Minimum length of 1. Maximum length of 262144.

Required: No

KeyEncryptionAlgorithm

The encryption algorithm that Amazon KMS should use with the public key for an Amazon Nitro Enclave or NitroTPM to encrypt plaintext values for the response. The only valid value is RSAES_OAEP_SHA_256.

Type: String

Valid Values: RSAES_OAEP_SHA_256

Required: No

See Also

For more information about using this API in one of the language-specific Amazon SDKs, see the following: