KeyWrapper (Central Dogma 0.83.0 API reference)

public interface KeyWrapper

Manages the encryption keys used for encrypting and decrypting data at rest.

Method Summary

Modifier and Type

Method

Description

CompletableFuture<String>

rewrap(String wdek, String oldKekId, String newKekId)

Re-wraps the given wrapped data encryption key (WDEK).

CompletableFuture<byte[]>

unwrap(String wdek, String kekId)

Unwraps the given wrapped data encryption key (WDEK) using the key management service.

CompletableFuture<String>

wrap(byte[] dek, String kekId)

Wraps the given data encryption key (DEK) using the key management service.

Method Details
- wrap
  
  CompletableFuture<String> wrap(byte[] dek, String kekId)
  
  Wraps the given data encryption key (DEK) using the key management service.
  
  Parameters:
  
  dek - the data encryption key to be wrapped.
  
  kekId - the key encryption key (KEK) identifier to be used for wrapping.
- unwrap
  
  CompletableFuture<byte[]> unwrap(String wdek, String kekId)
  
  Unwraps the given wrapped data encryption key (WDEK) using the key management service.
- rewrap
  
  CompletableFuture<String> rewrap(String wdek, String oldKekId, String newKekId)
  
  Re-wraps the given wrapped data encryption key (WDEK).