S3EncryptionConfig
A structure that contains the configuration of encryption-at-rest settings for canary artifacts that the canary uploads to Amazon S3.
For more information, see Encrypting canary artifacts
Contents
- EncryptionMode
-
The encryption method to use for artifacts created by this canary. Specify
SSE_S3
to use server-side encryption (SSE) with an Amazon S3-managed key. SpecifySSE-KMS
to use server-side encryption with a customer-managed AWS KMS key.If you omit this parameter, an AWS-managed AWS KMS key is used.
Type: String
Valid Values:
SSE_S3 | SSE_KMS
Required: No
- KmsKeyArn
-
The ARN of the customer-managed AWS KMS key to use, if you specify
SSE-KMS
forEncryptionMode
Type: String
Length Constraints: Minimum length of 1. Maximum length of 2048.
Pattern:
arn:(aws[a-zA-Z-]*)?:kms:[a-z]{2,4}(-[a-z]{2,4})?-[a-z]+-\d{1}:\d{12}:key/[\w\-\/]+
Required: No
See Also
For more information about using this API in one of the language-specific AWS SDKs, see the following: