class Aws::KMS::Types::GenerateDataKeyResponse

@see docs.aws.amazon.com/goto/WebAPI/kms-2014-11-01/GenerateDataKeyResponse AWS API Documentation
@return [String]
parameter.
This field is omitted if the request includes the ‘Recipient`
The identifier of the key material used to encrypt the data key.
@!attribute [rw] key_material_id
@return [String]<br>: docs.aws.amazon.com/kms/latest/developerguide/services-nitro-enclaves.html<br><br><br><br>Management Service Developer Guide*.
[How Amazon Web Services Nitro Enclaves uses KMS] in the *Key
interaction between KMS and Amazon Web Services Nitro Enclaves, see
an Amazon Web Services Nitro enclave. For information about the
parameter in the request includes a valid attestation document from
This field is included in the response only when the `Recipient`
key in the Nitro enclave.
enclave. This ciphertext can be decrypted only by using a private
The plaintext data key encrypted with the public key from the Nitro
@!attribute [rw] ciphertext_for_recipient
@return [String]<br>: docs.aws.amazon.com/kms/latest/developerguide/concepts.html#key-id-key-ARN<br><br><br><br>encrypted the data key.
The Amazon Resource Name ([key ARN]) of the KMS key that
@!attribute [rw] key_id
@return [String]
`Plaintext` field is null or empty.
If the response includes the `CiphertextForRecipient` field, the
KMS. Then, remove it from memory as soon as possible.
Base64-encoded. Use this data key to encrypt your data outside of
Services CLI, the value is Base64-encoded. Otherwise, it is not
The plaintext data key. When you use the HTTP API or the Amazon Web
@!attribute [rw] plaintext
@return [String]
is not Base64-encoded.
Amazon Web Services CLI, the value is Base64-encoded. Otherwise, it
The encrypted copy of the data key. When you use the HTTP API or the
@!attribute [rw] ciphertext_blob