├── .github ├── CODEOWNERS ├── PULL_REQUEST_TEMPLATE.md ├── not-grep.toml └── workflows │ ├── ci_static-analysis.yaml │ └── repo-sync.yml ├── .gitignore ├── .markdownlint.json ├── .prettierignore ├── .prettierrc.toml ├── CODE_OF_CONDUCT.md ├── CONTRIBUTING.md ├── LICENSE ├── LICENSE-SAMPLECODE ├── LICENSE-SUMMARY ├── README.md ├── VERSIONING.md ├── changes ├── 2020-05-13_remove-keyring-trace │ ├── background.md │ └── change.md ├── 2020-06-04_how-to-fail-with-keyrings │ ├── background.md │ └── change.md ├── 2020-06-09_wrapping-key-identifiers │ └── change.md ├── 2020-06-16_required-examples │ └── change.md ├── 2020-06-17_encrypt-max-plaintext-length-input │ └── change.md ├── 2020-07-01_aws-kms-keyring-redesign │ ├── background.md │ └── change.md ├── 2020-07-06_clarify-streaming-encrypt-decrypt │ └── change.md ├── 2020-07-13_detect-base64-encoded-messages │ └── change.md ├── 2020-07-14_multi-keyring-require-generation │ └── change.md ├── 2020-07-14_refactor-cmc-spec │ └── change.md ├── 2020-07-15_clarify-caching-cmm-init-params │ └── change.md ├── 2020-07-15_encryption-context-reserved-prefix │ └── change.md ├── 2020-07-15_specify-behavior-for-raw-aes-keyring-for-invalid-EC │ └── change.md ├── 2020-07-17_cache-entry-identifier-formulas │ └── change.md ├── 2020-07-20_put-cache-entry-returns-nothing │ └── change.md ├── 2022-06-19_seperate_material_providers │ ├── background.md │ └── change.md ├── 2022-11-14_encryption_context_on_decrypt │ ├── background.md │ ├── encryption_context_use_cases.md │ └── proposal.md ├── 2023-06-19_thread_safe_cache │ ├── background.md │ └── change.md ├── 2023_7_12_update-keystore-structure │ ├── background.md │ └── proposal.md ├── 2024-03-12_ecdh-keyring │ ├── background.md │ └── change.md ├── 2024-05-20-keystore-kms-config │ └── change.md ├── 2024-09-13_cache-across-hierarchical-keyrings │ ├── background.md │ └── change.md └── 2025-01-16_key-store-mitigate-update-race │ └── background.md ├── ci └── prettify.sh ├── client-apis ├── client.md ├── decrypt.md ├── encrypt.md └── streaming.md ├── data-format ├── message-body-aad.md ├── message-body.md ├── message-footer.md ├── message-header.md └── message.md ├── examples ├── examples.md └── templates │ ├── configuration │ └── raw-keyrings │ │ ├── raw-aes-keyring.md │ │ ├── raw-rsa-keyring-encrypt-with-public-only.md │ │ ├── raw-rsa-keyring-from-encoded-key.md │ │ └── raw-rsa-keyring.md │ └── readme.md ├── framework ├── README.md ├── algorithm-suites.md ├── aws-kms │ ├── aws-kms-discovery-keyring.md │ ├── aws-kms-ecdh-keyring.md │ ├── aws-kms-hierarchical-keyring.md │ ├── aws-kms-key-arn.md │ ├── aws-kms-keyring.md │ ├── aws-kms-mrk-are-unique.md │ ├── aws-kms-mrk-aware-master-key-provider.md │ ├── aws-kms-mrk-aware-master-key.md │ ├── aws-kms-mrk-discovery-keyring.md │ ├── aws-kms-mrk-keyring.md │ ├── aws-kms-mrk-match-for-decrypt.md │ ├── aws-kms-mrk-multi-keyrings.md │ ├── aws-kms-multi-keyrings.md │ └── aws-kms-rsa-keyring.md ├── branch-key-store.md ├── caching-cmm.md ├── cmm-interface.md ├── commitment-policy.md ├── cryptographic-materials-cache.md ├── default-cmm.md ├── key-agreement-schemas.md ├── keyring-interface.md ├── local-cryptographic-materials-cache.md ├── master-key-interface.md ├── master-key-provider-interface.md ├── multi-keyring.md ├── raw-aes-keyring.md ├── raw-ecdh-keyring.md ├── raw-rsa-keyring.md ├── required-encryption-context-cmm.md ├── storm-tracking-cryptographic-materials-cache.md ├── structures.md ├── synchronized-local-cryptographic-materials-cache.md ├── test-vectors │ ├── README.md │ ├── complete-vectors │ │ ├── README.md │ │ ├── default-cmm.md │ │ ├── encryption-context.md │ │ ├── hierarchy.md │ │ ├── kms-mrk-aware-discovery.md │ │ ├── kms-mrk-aware.md │ │ ├── kms-rsa.md │ │ ├── kms.md │ │ ├── raw-aes.md │ │ ├── raw-rsa.md │ │ └── required-encryption-context-cmm.md │ ├── decryption-manifest.md │ ├── encryption-manifest.md │ ├── esdk-test-vector-enumeration.md │ ├── key-description.md │ ├── keys-manifest.md │ ├── mpl-test-vector-enumeration.md │ └── test-vector-enumeration.md └── transitive-requirements.md ├── proposals ├── 2020-06-26_decrypt-max-header-size-max-body-size │ └── proposal.md └── 2022-10-27_rsa-keyring-v2 │ └── proposal.md ├── s3-encryption ├── README.md ├── client.md └── materials │ ├── keyrings.md │ ├── s3-keyring.md │ └── s3-kms-keyring.md ├── tenets.md └── util ├── extract.js ├── install-duvet ├── report.js ├── specification_extract.sh └── test_conditions /.github/CODEOWNERS: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/.github/CODEOWNERS -------------------------------------------------------------------------------- /.github/PULL_REQUEST_TEMPLATE.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/.github/PULL_REQUEST_TEMPLATE.md -------------------------------------------------------------------------------- /.github/not-grep.toml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/.github/not-grep.toml -------------------------------------------------------------------------------- /.github/workflows/ci_static-analysis.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/.github/workflows/ci_static-analysis.yaml -------------------------------------------------------------------------------- /.github/workflows/repo-sync.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/.github/workflows/repo-sync.yml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/.gitignore -------------------------------------------------------------------------------- /.markdownlint.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/.markdownlint.json -------------------------------------------------------------------------------- /.prettierignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/.prettierignore -------------------------------------------------------------------------------- /.prettierrc.toml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/.prettierrc.toml -------------------------------------------------------------------------------- /CODE_OF_CONDUCT.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/CODE_OF_CONDUCT.md -------------------------------------------------------------------------------- /CONTRIBUTING.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/CONTRIBUTING.md -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/LICENSE -------------------------------------------------------------------------------- /LICENSE-SAMPLECODE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/LICENSE-SAMPLECODE -------------------------------------------------------------------------------- /LICENSE-SUMMARY: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/LICENSE-SUMMARY -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/README.md -------------------------------------------------------------------------------- /VERSIONING.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/VERSIONING.md -------------------------------------------------------------------------------- /changes/2020-05-13_remove-keyring-trace/background.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2020-05-13_remove-keyring-trace/background.md -------------------------------------------------------------------------------- /changes/2020-05-13_remove-keyring-trace/change.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2020-05-13_remove-keyring-trace/change.md -------------------------------------------------------------------------------- /changes/2020-06-04_how-to-fail-with-keyrings/background.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2020-06-04_how-to-fail-with-keyrings/background.md -------------------------------------------------------------------------------- /changes/2020-06-04_how-to-fail-with-keyrings/change.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2020-06-04_how-to-fail-with-keyrings/change.md -------------------------------------------------------------------------------- /changes/2020-06-09_wrapping-key-identifiers/change.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2020-06-09_wrapping-key-identifiers/change.md -------------------------------------------------------------------------------- /changes/2020-06-16_required-examples/change.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2020-06-16_required-examples/change.md -------------------------------------------------------------------------------- /changes/2020-06-17_encrypt-max-plaintext-length-input/change.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2020-06-17_encrypt-max-plaintext-length-input/change.md -------------------------------------------------------------------------------- /changes/2020-07-01_aws-kms-keyring-redesign/background.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2020-07-01_aws-kms-keyring-redesign/background.md -------------------------------------------------------------------------------- /changes/2020-07-01_aws-kms-keyring-redesign/change.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2020-07-01_aws-kms-keyring-redesign/change.md -------------------------------------------------------------------------------- /changes/2020-07-06_clarify-streaming-encrypt-decrypt/change.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2020-07-06_clarify-streaming-encrypt-decrypt/change.md -------------------------------------------------------------------------------- /changes/2020-07-13_detect-base64-encoded-messages/change.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2020-07-13_detect-base64-encoded-messages/change.md -------------------------------------------------------------------------------- /changes/2020-07-14_multi-keyring-require-generation/change.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2020-07-14_multi-keyring-require-generation/change.md -------------------------------------------------------------------------------- /changes/2020-07-14_refactor-cmc-spec/change.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2020-07-14_refactor-cmc-spec/change.md -------------------------------------------------------------------------------- /changes/2020-07-15_clarify-caching-cmm-init-params/change.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2020-07-15_clarify-caching-cmm-init-params/change.md -------------------------------------------------------------------------------- /changes/2020-07-15_encryption-context-reserved-prefix/change.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2020-07-15_encryption-context-reserved-prefix/change.md -------------------------------------------------------------------------------- /changes/2020-07-15_specify-behavior-for-raw-aes-keyring-for-invalid-EC/change.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2020-07-15_specify-behavior-for-raw-aes-keyring-for-invalid-EC/change.md -------------------------------------------------------------------------------- /changes/2020-07-17_cache-entry-identifier-formulas/change.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2020-07-17_cache-entry-identifier-formulas/change.md -------------------------------------------------------------------------------- /changes/2020-07-20_put-cache-entry-returns-nothing/change.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2020-07-20_put-cache-entry-returns-nothing/change.md -------------------------------------------------------------------------------- /changes/2022-06-19_seperate_material_providers/background.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2022-06-19_seperate_material_providers/background.md -------------------------------------------------------------------------------- /changes/2022-06-19_seperate_material_providers/change.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2022-06-19_seperate_material_providers/change.md -------------------------------------------------------------------------------- /changes/2022-11-14_encryption_context_on_decrypt/background.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2022-11-14_encryption_context_on_decrypt/background.md -------------------------------------------------------------------------------- /changes/2022-11-14_encryption_context_on_decrypt/encryption_context_use_cases.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2022-11-14_encryption_context_on_decrypt/encryption_context_use_cases.md -------------------------------------------------------------------------------- /changes/2022-11-14_encryption_context_on_decrypt/proposal.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2022-11-14_encryption_context_on_decrypt/proposal.md -------------------------------------------------------------------------------- /changes/2023-06-19_thread_safe_cache/background.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2023-06-19_thread_safe_cache/background.md -------------------------------------------------------------------------------- /changes/2023-06-19_thread_safe_cache/change.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2023-06-19_thread_safe_cache/change.md -------------------------------------------------------------------------------- /changes/2023_7_12_update-keystore-structure/background.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2023_7_12_update-keystore-structure/background.md -------------------------------------------------------------------------------- /changes/2023_7_12_update-keystore-structure/proposal.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2023_7_12_update-keystore-structure/proposal.md -------------------------------------------------------------------------------- /changes/2024-03-12_ecdh-keyring/background.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2024-03-12_ecdh-keyring/background.md -------------------------------------------------------------------------------- /changes/2024-03-12_ecdh-keyring/change.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2024-03-12_ecdh-keyring/change.md -------------------------------------------------------------------------------- /changes/2024-05-20-keystore-kms-config/change.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2024-05-20-keystore-kms-config/change.md -------------------------------------------------------------------------------- /changes/2024-09-13_cache-across-hierarchical-keyrings/background.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2024-09-13_cache-across-hierarchical-keyrings/background.md -------------------------------------------------------------------------------- /changes/2024-09-13_cache-across-hierarchical-keyrings/change.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2024-09-13_cache-across-hierarchical-keyrings/change.md -------------------------------------------------------------------------------- /changes/2025-01-16_key-store-mitigate-update-race/background.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/changes/2025-01-16_key-store-mitigate-update-race/background.md -------------------------------------------------------------------------------- /ci/prettify.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/ci/prettify.sh -------------------------------------------------------------------------------- /client-apis/client.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/client-apis/client.md -------------------------------------------------------------------------------- /client-apis/decrypt.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/client-apis/decrypt.md -------------------------------------------------------------------------------- /client-apis/encrypt.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/client-apis/encrypt.md -------------------------------------------------------------------------------- /client-apis/streaming.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/client-apis/streaming.md -------------------------------------------------------------------------------- /data-format/message-body-aad.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/data-format/message-body-aad.md -------------------------------------------------------------------------------- /data-format/message-body.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/data-format/message-body.md -------------------------------------------------------------------------------- /data-format/message-footer.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/data-format/message-footer.md -------------------------------------------------------------------------------- /data-format/message-header.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/data-format/message-header.md -------------------------------------------------------------------------------- /data-format/message.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/data-format/message.md -------------------------------------------------------------------------------- /examples/examples.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/examples/examples.md -------------------------------------------------------------------------------- /examples/templates/configuration/raw-keyrings/raw-aes-keyring.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/examples/templates/configuration/raw-keyrings/raw-aes-keyring.md -------------------------------------------------------------------------------- /examples/templates/configuration/raw-keyrings/raw-rsa-keyring-encrypt-with-public-only.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/examples/templates/configuration/raw-keyrings/raw-rsa-keyring-encrypt-with-public-only.md -------------------------------------------------------------------------------- /examples/templates/configuration/raw-keyrings/raw-rsa-keyring-from-encoded-key.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/examples/templates/configuration/raw-keyrings/raw-rsa-keyring-from-encoded-key.md -------------------------------------------------------------------------------- /examples/templates/configuration/raw-keyrings/raw-rsa-keyring.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/examples/templates/configuration/raw-keyrings/raw-rsa-keyring.md -------------------------------------------------------------------------------- /examples/templates/readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/examples/templates/readme.md -------------------------------------------------------------------------------- /framework/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/README.md -------------------------------------------------------------------------------- /framework/algorithm-suites.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/algorithm-suites.md -------------------------------------------------------------------------------- /framework/aws-kms/aws-kms-discovery-keyring.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/aws-kms/aws-kms-discovery-keyring.md -------------------------------------------------------------------------------- /framework/aws-kms/aws-kms-ecdh-keyring.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/aws-kms/aws-kms-ecdh-keyring.md -------------------------------------------------------------------------------- /framework/aws-kms/aws-kms-hierarchical-keyring.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/aws-kms/aws-kms-hierarchical-keyring.md -------------------------------------------------------------------------------- /framework/aws-kms/aws-kms-key-arn.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/aws-kms/aws-kms-key-arn.md -------------------------------------------------------------------------------- /framework/aws-kms/aws-kms-keyring.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/aws-kms/aws-kms-keyring.md -------------------------------------------------------------------------------- /framework/aws-kms/aws-kms-mrk-are-unique.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/aws-kms/aws-kms-mrk-are-unique.md -------------------------------------------------------------------------------- /framework/aws-kms/aws-kms-mrk-aware-master-key-provider.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/aws-kms/aws-kms-mrk-aware-master-key-provider.md -------------------------------------------------------------------------------- /framework/aws-kms/aws-kms-mrk-aware-master-key.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/aws-kms/aws-kms-mrk-aware-master-key.md -------------------------------------------------------------------------------- /framework/aws-kms/aws-kms-mrk-discovery-keyring.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/aws-kms/aws-kms-mrk-discovery-keyring.md -------------------------------------------------------------------------------- /framework/aws-kms/aws-kms-mrk-keyring.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/aws-kms/aws-kms-mrk-keyring.md -------------------------------------------------------------------------------- /framework/aws-kms/aws-kms-mrk-match-for-decrypt.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/aws-kms/aws-kms-mrk-match-for-decrypt.md -------------------------------------------------------------------------------- /framework/aws-kms/aws-kms-mrk-multi-keyrings.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/aws-kms/aws-kms-mrk-multi-keyrings.md -------------------------------------------------------------------------------- /framework/aws-kms/aws-kms-multi-keyrings.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/aws-kms/aws-kms-multi-keyrings.md -------------------------------------------------------------------------------- /framework/aws-kms/aws-kms-rsa-keyring.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/aws-kms/aws-kms-rsa-keyring.md -------------------------------------------------------------------------------- /framework/branch-key-store.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/branch-key-store.md -------------------------------------------------------------------------------- /framework/caching-cmm.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/caching-cmm.md -------------------------------------------------------------------------------- /framework/cmm-interface.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/cmm-interface.md -------------------------------------------------------------------------------- /framework/commitment-policy.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/commitment-policy.md -------------------------------------------------------------------------------- /framework/cryptographic-materials-cache.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/cryptographic-materials-cache.md -------------------------------------------------------------------------------- /framework/default-cmm.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/default-cmm.md -------------------------------------------------------------------------------- /framework/key-agreement-schemas.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/key-agreement-schemas.md -------------------------------------------------------------------------------- /framework/keyring-interface.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/keyring-interface.md -------------------------------------------------------------------------------- /framework/local-cryptographic-materials-cache.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/local-cryptographic-materials-cache.md -------------------------------------------------------------------------------- /framework/master-key-interface.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/master-key-interface.md -------------------------------------------------------------------------------- /framework/master-key-provider-interface.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/master-key-provider-interface.md -------------------------------------------------------------------------------- /framework/multi-keyring.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/multi-keyring.md -------------------------------------------------------------------------------- /framework/raw-aes-keyring.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/raw-aes-keyring.md -------------------------------------------------------------------------------- /framework/raw-ecdh-keyring.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/raw-ecdh-keyring.md -------------------------------------------------------------------------------- /framework/raw-rsa-keyring.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/raw-rsa-keyring.md -------------------------------------------------------------------------------- /framework/required-encryption-context-cmm.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/required-encryption-context-cmm.md -------------------------------------------------------------------------------- /framework/storm-tracking-cryptographic-materials-cache.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/storm-tracking-cryptographic-materials-cache.md -------------------------------------------------------------------------------- /framework/structures.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/structures.md -------------------------------------------------------------------------------- /framework/synchronized-local-cryptographic-materials-cache.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/synchronized-local-cryptographic-materials-cache.md -------------------------------------------------------------------------------- /framework/test-vectors/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/test-vectors/README.md -------------------------------------------------------------------------------- /framework/test-vectors/complete-vectors/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/test-vectors/complete-vectors/README.md -------------------------------------------------------------------------------- /framework/test-vectors/complete-vectors/default-cmm.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/test-vectors/complete-vectors/default-cmm.md -------------------------------------------------------------------------------- /framework/test-vectors/complete-vectors/encryption-context.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/test-vectors/complete-vectors/encryption-context.md -------------------------------------------------------------------------------- /framework/test-vectors/complete-vectors/hierarchy.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/test-vectors/complete-vectors/hierarchy.md -------------------------------------------------------------------------------- /framework/test-vectors/complete-vectors/kms-mrk-aware-discovery.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/test-vectors/complete-vectors/kms-mrk-aware-discovery.md -------------------------------------------------------------------------------- /framework/test-vectors/complete-vectors/kms-mrk-aware.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/test-vectors/complete-vectors/kms-mrk-aware.md -------------------------------------------------------------------------------- /framework/test-vectors/complete-vectors/kms-rsa.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/test-vectors/complete-vectors/kms-rsa.md -------------------------------------------------------------------------------- /framework/test-vectors/complete-vectors/kms.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/test-vectors/complete-vectors/kms.md -------------------------------------------------------------------------------- /framework/test-vectors/complete-vectors/raw-aes.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/test-vectors/complete-vectors/raw-aes.md -------------------------------------------------------------------------------- /framework/test-vectors/complete-vectors/raw-rsa.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/test-vectors/complete-vectors/raw-rsa.md -------------------------------------------------------------------------------- /framework/test-vectors/complete-vectors/required-encryption-context-cmm.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/test-vectors/complete-vectors/required-encryption-context-cmm.md -------------------------------------------------------------------------------- /framework/test-vectors/decryption-manifest.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/test-vectors/decryption-manifest.md -------------------------------------------------------------------------------- /framework/test-vectors/encryption-manifest.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/test-vectors/encryption-manifest.md -------------------------------------------------------------------------------- /framework/test-vectors/esdk-test-vector-enumeration.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/test-vectors/esdk-test-vector-enumeration.md -------------------------------------------------------------------------------- /framework/test-vectors/key-description.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/test-vectors/key-description.md -------------------------------------------------------------------------------- /framework/test-vectors/keys-manifest.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/test-vectors/keys-manifest.md -------------------------------------------------------------------------------- /framework/test-vectors/mpl-test-vector-enumeration.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/test-vectors/mpl-test-vector-enumeration.md -------------------------------------------------------------------------------- /framework/test-vectors/test-vector-enumeration.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/test-vectors/test-vector-enumeration.md -------------------------------------------------------------------------------- /framework/transitive-requirements.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/framework/transitive-requirements.md -------------------------------------------------------------------------------- /proposals/2020-06-26_decrypt-max-header-size-max-body-size/proposal.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/proposals/2020-06-26_decrypt-max-header-size-max-body-size/proposal.md -------------------------------------------------------------------------------- /proposals/2022-10-27_rsa-keyring-v2/proposal.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/proposals/2022-10-27_rsa-keyring-v2/proposal.md -------------------------------------------------------------------------------- /s3-encryption/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/s3-encryption/README.md -------------------------------------------------------------------------------- /s3-encryption/client.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/s3-encryption/client.md -------------------------------------------------------------------------------- /s3-encryption/materials/keyrings.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/s3-encryption/materials/keyrings.md -------------------------------------------------------------------------------- /s3-encryption/materials/s3-keyring.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/s3-encryption/materials/s3-keyring.md -------------------------------------------------------------------------------- /s3-encryption/materials/s3-kms-keyring.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/s3-encryption/materials/s3-kms-keyring.md -------------------------------------------------------------------------------- /tenets.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/tenets.md -------------------------------------------------------------------------------- /util/extract.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/util/extract.js -------------------------------------------------------------------------------- /util/install-duvet: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/util/install-duvet -------------------------------------------------------------------------------- /util/report.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/util/report.js -------------------------------------------------------------------------------- /util/specification_extract.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/util/specification_extract.sh -------------------------------------------------------------------------------- /util/test_conditions: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/aws-encryption-sdk-specification/HEAD/util/test_conditions --------------------------------------------------------------------------------