com.amazonaws.encryptionsdk.caching.CachingCryptoMaterialsManager Java Examples
The following examples show how to use
com.amazonaws.encryptionsdk.caching.CachingCryptoMaterialsManager.
You can vote up the ones you like or vote down the ones you don't like,
and go to the original project or source file by following the links above each example. You may check out the related API usage on the sidebar.
Example #1
| Source File: AwsCryptoTest.java From aws-encryption-sdk-java with Apache License 2.0 | 6 votes |
|
@Test
public void estimateCiphertextSize_usesCachedKeys() throws Exception {
// Make sure estimateCiphertextSize works with cached CMMs
CryptoMaterialsManager cmm = spy(new DefaultCryptoMaterialsManager(masterKeyProvider));
CachingCryptoMaterialsManager cache = CachingCryptoMaterialsManager.newBuilder()
.withBackingMaterialsManager(cmm)
.withMaxAge(Long.MAX_VALUE, TimeUnit.SECONDS)
.withCache(new LocalCryptoMaterialsCache(1))
.withMessageUseLimit(9999)
.withByteUseLimit(501)
.build();
// These estimates should be cached, and should not consume any bytes from the byte use limit.
encryptionClient_.estimateCiphertextSize(cache, 500, new HashMap<>());
encryptionClient_.estimateCiphertextSize(cache, 500, new HashMap<>());
encryptionClient_.encryptData(cache, new byte[500]);
verify(cmm, times(1)).getMaterialsForEncrypt(any());
}
Example #2
| Source File: ApplicationConfiguration.java From cerberus with Apache License 2.0 | 5 votes |
|
@Bean("encryptCryptoMaterialsManager")
public CryptoMaterialsManager encryptCryptoMaterialsManager(
@Value("${cerberus.encryption.cmk.arns}") String cmkArns,
@Value("${cerberus.encryption.cache.enabled:false}") boolean cacheEnabled,
@Value("${cerberus.encryption.cache.encrypt.maxSize:100}") int encryptMaxSize,
@Value("${cerberus.encryption.cache.encrypt.maxAgeInSeconds:60}") int encryptMaxAge,
@Value("${cerberus.encryption.cache.encrypt.messageUseLimit:100}") int encryptMessageUseLimit,
Region currentRegion,
MetricsService metricsService) {
MasterKeyProvider<KmsMasterKey> keyProvider = initializeKeyProvider(cmkArns, currentRegion);
if (cacheEnabled) {
log.info(
"Initializing caching encryptCryptoMaterialsManager with CMK: {}, maxSize: {}, maxAge: {}, "
+ "messageUseLimit: {}",
cmkArns,
encryptMaxSize,
encryptMaxAge,
encryptMessageUseLimit);
CryptoMaterialsCache cache =
new MetricReportingCryptoMaterialsCache(encryptMaxSize, metricsService);
CryptoMaterialsManager cachingCmm =
CachingCryptoMaterialsManager.newBuilder()
.withMasterKeyProvider(keyProvider)
.withCache(cache)
.withMaxAge(encryptMaxAge, TimeUnit.SECONDS)
.withMessageUseLimit(encryptMessageUseLimit)
.build();
return cachingCmm;
} else {
log.info("Initializing encryptCryptoMaterialsManager with CMK: {}", cmkArns);
return new DefaultCryptoMaterialsManager(keyProvider);
}
}
Example #3
| Source File: ApplicationConfiguration.java From cerberus with Apache License 2.0 | 5 votes |
|
@Bean("decryptCryptoMaterialsManager")
public CryptoMaterialsManager decryptCryptoMaterialsManager(
@Value("${cerberus.encryption.cmk.arns}") String cmkArns,
@Value("${cerberus.encryption.cache.enabled:#{false}}") boolean cacheEnabled,
@Value("${cerberus.encryption.cache.decrypt.maxSize:1000}") int decryptMaxSize,
@Value("${cerberus.encryption.cache.decrypt.maxAgeInSeconds:60}") int decryptMaxAge,
Region currentRegion,
MetricsService metricsService) {
MasterKeyProvider<KmsMasterKey> keyProvider = initializeKeyProvider(cmkArns, currentRegion);
if (cacheEnabled) {
log.info(
"Initializing caching decryptCryptoMaterialsManager with CMK: {}, maxSize: {}, maxAge: {}",
cmkArns,
decryptMaxSize,
decryptMaxAge);
CryptoMaterialsCache cache =
new MetricReportingCryptoMaterialsCache(decryptMaxAge, metricsService);
CryptoMaterialsManager cachingCmm =
CachingCryptoMaterialsManager.newBuilder()
.withMasterKeyProvider(keyProvider)
.withCache(cache)
.withMaxAge(decryptMaxAge, TimeUnit.SECONDS)
.build();
return cachingCmm;
} else {
log.info("Initializing decryptCryptoMaterialsManager with CMK: {}", cmkArns);
return new DefaultCryptoMaterialsManager(keyProvider);
}
}
