Encryption.Kms
KMS-based field-level encryption using AWS Encryption SDK for protecting sensitive data.
Installation
dotnet add package Oproto.FluentDynamoDb.Encryption.Kms
Key Features
- Field-Level Encryption - Encrypt individual properties
- AWS KMS Integration - Use AWS KMS for key management
- Envelope Encryption - Efficient encryption with data keys
- Automatic Key Rotation - Support for KMS key rotation
Quick Start
var keyResolver = new DefaultKmsKeyResolver("arn:aws:kms:us-east-1:123456789012:key/my-key");
var encryptor = new AwsEncryptionSdkFieldEncryptor(keyResolver);
var options = new FluentDynamoDbOptions()
.WithEncryption(encryptor);
var table = new SecretsTable(client, "secrets", options);
For details, see the Encryption overview.