Class ServerSideEncryptionByDefault
Describes the default server-side encryption to apply to new objects in the bucket. If a PUT Object request doesn't specify any server-side encryption, this default encryption will be applied. For more information, see PUT Bucket encryption in the Amazon S3 API Reference.
public class ServerSideEncryptionByDefault- Inheritance
-
ServerSideEncryptionByDefault
- Inherited Members
Constructors
ServerSideEncryptionByDefault()
public ServerSideEncryptionByDefault()Properties
ServerSideEncryptionAlgorithm
Server-side encryption algorithm to use for the default encryption.
public ServerSideEncryptionMethod ServerSideEncryptionAlgorithm { get; set; }Property Value
ServerSideEncryptionKeyManagementServiceKeyId
KMS master key ID to use for the default encryption. This parameter is allowed if SSEAlgorithm is aws:kms.
Amazon Web Services Key Management Service (KMS) customer Amazon Web Services KMS key ID to use for the default encryption. This parameter is allowed if and only if
SSEAlgorithmaws:kmsYou can specify the key ID or the Amazon Resource Name (ARN) of the KMS key. However, if you are using encryption with cross-account operations, you must use a fully qualified KMS key ARN. For more information, see Using encryption for cross-account operations.
For example:
Key ID:
1234abcd-12ab-34cd-56ef-1234567890abKey ARN:
arn:aws:kms:us-east-2:111122223333:key/1234abcd-12ab-34cd-56ef-1234567890ab
Amazon S3 only supports symmetric encryption KMS keys. For more information, see Asymmetric keys in Amazon Web Services KMS in the Amazon Web Services Key Management Service Developer Guide.
public string ServerSideEncryptionKeyManagementServiceKeyId { get; set; }