kms/aws.sdk.kotlin.services.kms.model/GenerateDataKeyPairWithoutPlaintextRequest/Builder/keyPairSpec

keyPairSpec

var keyPairSpec: DataKeyPairSpec?

Determines the type of data key pair that is generated.

The KMS rule that restricts the use of asymmetric RSA and SM2 KMS keys to encrypt and decrypt or to sign and verify (but not both), the rule that permits you to use ECC KMS keys only to sign and verify, and the rule that permits you to use ML-DSA key pairs to sign and verify only are not effective on data key pairs, which are used outside of KMS. The SM2 key spec is only available in China Regions.

© 2025, Amazon Web Services, Inc. or its affiliates. All rights reserved. Generated by dokka