@Generated(value="software.amazon.awssdk:codegen") public final class Encryption extends Object implements SdkPojo, Serializable, ToCopyableBuilder<Encryption.Builder,Encryption>
The encryption settings, if any, that are used for decrypting your input files or encrypting your output files. If your input file is encrypted, you must specify the mode that Elastic Transcoder uses to decrypt your file, otherwise you must specify the mode you want Elastic Transcoder to use to encrypt your output files.
| Modifier and Type | Class and Description |
|---|---|
static interface |
Encryption.Builder |
| Modifier and Type | Method and Description |
|---|---|
static Encryption.Builder |
builder() |
boolean |
equals(Object obj) |
<T> Optional<T> |
getValueForField(String fieldName,
Class<T> clazz) |
int |
hashCode() |
String |
initializationVector()
The series of random bits created by a random bit generator, unique for every encryption operation, that you used
to encrypt your input files or that you want Elastic Transcoder to use to encrypt your output files.
|
String |
key()
The data encryption key that you want Elastic Transcoder to use to encrypt your output file, or that was used to
encrypt your input file.
|
String |
keyMd5()
The MD5 digest of the key that you used to encrypt your input file, or that you want Elastic Transcoder to use to
encrypt your output file.
|
String |
mode()
The specific server-side encryption mode that you want Elastic Transcoder to use when decrypting your input files
or encrypting your output files.
|
List<SdkField<?>> |
sdkFields() |
static Class<? extends Encryption.Builder> |
serializableBuilderClass() |
Encryption.Builder |
toBuilder()
Take this object and create a builder that contains all of the current property values of this object.
|
String |
toString() |
copypublic String mode()
The specific server-side encryption mode that you want Elastic Transcoder to use when decrypting your input files or encrypting your output files. Elastic Transcoder supports the following options:
s3: Amazon S3 creates and manages the keys used for encrypting your files.
s3-aws-kms: Amazon S3 calls the Amazon Key Management Service, which creates and manages the keys that are
used for encrypting your files. If you specify s3-aws-kms and you don't want to use the default key,
you must add the AWS-KMS key that you want to use to your pipeline.
aes-cbc-pkcs7: A padded cipher-block mode of operation originally used for HLS files.
aes-ctr: AES Counter Mode.
aes-gcm: AES Galois Counter Mode, a mode of operation that is an authenticated encryption format, meaning that a file, key, or initialization vector that has been tampered with fails the decryption process.
For all three AES options, you must provide the following settings, which must be base64-encoded:
Key
Key MD5
Initialization Vector
For the AES modes, your private encryption keys and your unencrypted data are never stored by AWS; therefore, it is important that you safely manage your encryption keys. If you lose them, you won't be able to unencrypt your data.
s3: Amazon S3 creates and manages the keys used for encrypting your files.
s3-aws-kms: Amazon S3 calls the Amazon Key Management Service, which creates and manages the keys
that are used for encrypting your files. If you specify s3-aws-kms and you don't want to use
the default key, you must add the AWS-KMS key that you want to use to your pipeline.
aes-cbc-pkcs7: A padded cipher-block mode of operation originally used for HLS files.
aes-ctr: AES Counter Mode.
aes-gcm: AES Galois Counter Mode, a mode of operation that is an authenticated encryption format, meaning that a file, key, or initialization vector that has been tampered with fails the decryption process.
For all three AES options, you must provide the following settings, which must be base64-encoded:
Key
Key MD5
Initialization Vector
For the AES modes, your private encryption keys and your unencrypted data are never stored by AWS; therefore, it is important that you safely manage your encryption keys. If you lose them, you won't be able to unencrypt your data.
public String key()
The data encryption key that you want Elastic Transcoder to use to encrypt your output file, or that was used to encrypt your input file. The key must be base64-encoded and it must be one of the following bit lengths before being base64-encoded:
128, 192, or 256.
The key must also be encrypted by using the Amazon Key Management Service.
128, 192, or 256.
The key must also be encrypted by using the Amazon Key Management Service.
public String keyMd5()
The MD5 digest of the key that you used to encrypt your input file, or that you want Elastic Transcoder to use to encrypt your output file. Elastic Transcoder uses the key digest as a checksum to make sure your key was not corrupted in transit. The key MD5 must be base64-encoded, and it must be exactly 16 bytes long before being base64-encoded.
public String initializationVector()
The series of random bits created by a random bit generator, unique for every encryption operation, that you used to encrypt your input files or that you want Elastic Transcoder to use to encrypt your output files. The initialization vector must be base64-encoded, and it must be exactly 16 bytes long before being base64-encoded.
public Encryption.Builder toBuilder()
ToCopyableBuildertoBuilder in interface ToCopyableBuilder<Encryption.Builder,Encryption>public static Encryption.Builder builder()
public static Class<? extends Encryption.Builder> serializableBuilderClass()
Copyright © 2017 Amazon Web Services, Inc. All Rights Reserved.