RubyGems - aws-sdk-paymentcryptography - Versions diffs - 1.35.0 → 1.37.0 - Mend

aws-sdk-paymentcryptography 1.35.0 → 1.37.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (10) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +10 -0
data/VERSION +1 -1
data/lib/aws-sdk-paymentcryptography/client.rb +212 -111
data/lib/aws-sdk-paymentcryptography/types.rb +50 -43
data/lib/aws-sdk-paymentcryptography.rb +1 -1
data/sig/client.rbs +14 -13
data/sig/resource.rbs +1 -0
data/sig/types.rbs +12 -12
metadata +3 -3

data/lib/aws-sdk-paymentcryptography/types.rb CHANGED Viewed

@@ -151,8 +151,11 @@ module Aws::PaymentCryptography
     #   @return [Array<Types::Tag>]
     #
     # @!attribute [rw] derive_key_usage
-    #   The cryptographic usage of an ECDH derived key as deﬁned in section
-    #   A.5.2 of the TR-31 spec.
+    #   The intended cryptographic usage of keys derived from the ECC key
+    #   pair to be created.
+    #
+    #   After creating an ECC key pair, you cannot change the intended
+    #   cryptographic usage of keys derived from it using ECDH.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/payment-cryptography-2021-09-14/CreateKeyInput AWS API Documentation
@@ -228,18 +231,20 @@ module Aws::PaymentCryptography
       include Aws::Structure
     end
-    # Derivation data used to derive an ECDH key.
+    # The shared information used when deriving a key using ECDH.
     #
     # @note DiffieHellmanDerivationData is a union - when making an API calls you must set exactly one of the members.
     #
     # @!attribute [rw] shared_information
-    #   A byte string containing information that binds the ECDH derived key
-    #   to the two parties involved or to the context of the key.
+    #   A string containing information that binds the ECDH derived key to
+    #   the two parties involved or to the context of the key.
     #
     #   It may include details like identities of the two parties deriving
     #   the key, context of the operation, session IDs, and optionally a
-    #   nonce. It must not contain zero bytes, and re-using shared
-    #   information for multiple ECDH key derivations is not recommended.
+    #   nonce. It must not contain zero bytes. It is not recommended to
+    #   reuse shared information for multiple ECDH key derivations, as it
+    #   could result in derived key material being the same across different
+    #   derivations.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/payment-cryptography-2021-09-14/DiffieHellmanDerivationData AWS API Documentation
@@ -283,37 +288,38 @@ module Aws::PaymentCryptography
       include Aws::Structure
     end
-    # Parameter information for key material export using the asymmetric
-    # ECDH key exchange method.
+    # Key derivation parameter information for key material export using
+    # asymmetric ECDH key exchange method.
     #
     # @!attribute [rw] private_key_identifier
-    #   The `keyARN` of the asymmetric ECC key.
+    #   The `keyARN` of the asymmetric ECC key created within Amazon Web
+    #   Services Payment Cryptography.
     #   @return [String]
     #
     # @!attribute [rw] certificate_authority_public_key_identifier
-    #   The `keyARN` of the certificate that signed the client's
-    #   `PublicKeyCertificate`.
+    #   The `keyARN` of the CA that signed the `PublicKeyCertificate` for
+    #   the client's receiving ECC key pair.
     #   @return [String]
     #
     # @!attribute [rw] public_key_certificate
-    #   The client's public key certificate in PEM format (base64 encoded)
-    #   to use for ECDH key derivation.
+    #   The public key certificate of the client's receiving ECC key pair,
+    #   in PEM format (base64 encoded), to use for ECDH key derivation.
     #   @return [String]
     #
     # @!attribute [rw] derive_key_algorithm
-    #   The key algorithm of the derived ECDH key.
+    #   The key algorithm of the shared derived ECDH key.
     #   @return [String]
     #
     # @!attribute [rw] key_derivation_function
-    #   The key derivation function to use for deriving a key using ECDH.
+    #   The key derivation function to use when deriving a key using ECDH.
     #   @return [String]
     #
     # @!attribute [rw] key_derivation_hash_algorithm
-    #   The hash type to use for deriving a key using ECDH.
+    #   The hash type to use when deriving a key using ECDH.
     #   @return [String]
     #
     # @!attribute [rw] derivation_data
-    #   Derivation data used to derive an ECDH key.
+    #   The shared information used when deriving a key using ECDH.
     #   @return [Types::DiffieHellmanDerivationData]
     #
     # @!attribute [rw] key_block_headers
@@ -428,8 +434,8 @@ module Aws::PaymentCryptography
     #   @return [Types::ExportKeyCryptogram]
     #
     # @!attribute [rw] diffie_hellman_tr_31_key_block
-    #   Parameter information for key material export using the asymmetric
-    #   ECDH key exchange method.
+    #   Key derivation parameter information for key material export using
+    #   asymmetric ECDH key exchange method.
     #   @return [Types::ExportDiffieHellmanTr31KeyBlock]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/payment-cryptography-2021-09-14/ExportKeyMaterial AWS API Documentation
@@ -505,7 +511,7 @@ module Aws::PaymentCryptography
     #   Payment Cryptography. It also contains the signing key certificate
     #   that will sign the wrapped key during TR-34 key block generation.
     #   Call [GetParametersForExport][1] to receive an export token. It
-    #   expires after 7 days. You can use the same export token to export
+    #   expires after 30 days. You can use the same export token to export
     #   multiple keys from the same service account.
     #
     #
@@ -616,7 +622,7 @@ module Aws::PaymentCryptography
     # @!attribute [rw] signing_key_certificate
     #   The signing key certificate in PEM format (base64 encoded) of the
     #   public key for signature within the TR-34 key block. The certificate
-    #   expires after 7 days.
+    #   expires after 30 days.
     #   @return [String]
     #
     # @!attribute [rw] signing_key_certificate_chain
@@ -632,8 +638,8 @@ module Aws::PaymentCryptography
     #
     # @!attribute [rw] export_token
     #   The export token to initiate key export from Amazon Web Services
-    #   Payment Cryptography. The export token expires after 7 days. You can
-    #   use the same export token to export multiple keys from the same
+    #   Payment Cryptography. The export token expires after 30 days. You
+    #   can use the same export token to export multiple keys from the same
     #   service account.
     #   @return [String]
     #
@@ -684,7 +690,7 @@ module Aws::PaymentCryptography
     # @!attribute [rw] wrapping_key_certificate
     #   The wrapping key certificate in PEM format (base64 encoded) of the
     #   wrapping key for use within the TR-34 key block. The certificate
-    #   expires in 7 days.
+    #   expires in 30 days.
     #   @return [String]
     #
     # @!attribute [rw] wrapping_key_certificate_chain
@@ -700,8 +706,8 @@ module Aws::PaymentCryptography
     #
     # @!attribute [rw] import_token
     #   The import token to initiate key import into Amazon Web Services
-    #   Payment Cryptography. The import token expires after 7 days. You can
-    #   use the same import token to import multiple keys to the same
+    #   Payment Cryptography. The import token expires after 30 days. You
+    #   can use the same import token to import multiple keys to the same
     #   service account.
     #   @return [String]
     #
@@ -754,37 +760,38 @@ module Aws::PaymentCryptography
       include Aws::Structure
     end
-    # Parameter information for key material import using the asymmetric
-    # ECDH key exchange method.
+    # Key derivation parameter information for key material import using
+    # asymmetric ECDH key exchange method.
     #
     # @!attribute [rw] private_key_identifier
-    #   The `keyARN` of the asymmetric ECC key.
+    #   The `keyARN` of the asymmetric ECC key created within Amazon Web
+    #   Services Payment Cryptography.
     #   @return [String]
     #
     # @!attribute [rw] certificate_authority_public_key_identifier
-    #   The `keyARN` of the certificate that signed the client's
-    #   `PublicKeyCertificate`.
+    #   The `keyARN` of the CA that signed the `PublicKeyCertificate` for
+    #   the client's receiving ECC key pair.
     #   @return [String]
     #
     # @!attribute [rw] public_key_certificate
-    #   The client's public key certificate in PEM format (base64 encoded)
-    #   to use for ECDH key derivation.
+    #   The public key certificate of the client's receiving ECC key pair,
+    #   in PEM format (base64 encoded), to use for ECDH key derivation.
     #   @return [String]
     #
     # @!attribute [rw] derive_key_algorithm
-    #   The key algorithm of the derived ECDH key.
+    #   The key algorithm of the shared derived ECDH key.
     #   @return [String]
     #
     # @!attribute [rw] key_derivation_function
-    #   The key derivation function to use for deriving a key using ECDH.
+    #   The key derivation function to use when deriving a key using ECDH.
     #   @return [String]
     #
     # @!attribute [rw] key_derivation_hash_algorithm
-    #   The hash type to use for deriving a key using ECDH.
+    #   The hash type to use when deriving a key using ECDH.
     #   @return [String]
     #
     # @!attribute [rw] derivation_data
-    #   Derivation data used to derive an ECDH key.
+    #   The shared information used when deriving a key using ECDH.
     #   @return [Types::DiffieHellmanDerivationData]
     #
     # @!attribute [rw] wrapped_key_block
@@ -826,8 +833,8 @@ module Aws::PaymentCryptography
     # @!attribute [rw] import_token
     #   The import token that initiates key import using the asymmetric RSA
     #   wrap and unwrap key exchange method into AWS Payment Cryptography.
-    #   It expires after 7 days. You can use the same import token to import
-    #   multiple keys to the same service account.
+    #   It expires after 30 days. You can use the same import token to
+    #   import multiple keys to the same service account.
     #   @return [String]
     #
     # @!attribute [rw] wrapping_spec
@@ -937,8 +944,8 @@ module Aws::PaymentCryptography
     #   @return [Types::ImportKeyCryptogram]
     #
     # @!attribute [rw] diffie_hellman_tr_31_key_block
-    #   Parameter information for key material import using the asymmetric
-    #   ECDH key exchange method.
+    #   Key derivation parameter information for key material import using
+    #   asymmetric ECDH key exchange method.
     #   @return [Types::ImportDiffieHellmanTr31KeyBlock]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/payment-cryptography-2021-09-14/ImportKeyMaterial AWS API Documentation
@@ -1014,7 +1021,7 @@ module Aws::PaymentCryptography
     # @!attribute [rw] import_token
     #   The import token that initiates key import using the asymmetric
     #   TR-34 key exchange method into Amazon Web Services Payment
-    #   Cryptography. It expires after 7 days. You can use the same import
+    #   Cryptography. It expires after 30 days. You can use the same import
     #   token to import multiple keys to the same service account.
     #   @return [String]
     #

data/lib/aws-sdk-paymentcryptography.rb CHANGED Viewed

@@ -55,7 +55,7 @@ module Aws::PaymentCryptography
   autoload :EndpointProvider, 'aws-sdk-paymentcryptography/endpoint_provider'
   autoload :Endpoints, 'aws-sdk-paymentcryptography/endpoints'
-  GEM_VERSION = '1.35.0'
+  GEM_VERSION = '1.37.0'
 end

data/sig/client.rbs CHANGED Viewed

@@ -18,6 +18,7 @@ module Aws
                       ?account_id: String,
                       ?active_endpoint_cache: bool,
                       ?adaptive_retry_wait_to_fill: bool,
+                      ?auth_scheme_preference: Array[String],
                       ?client_side_monitoring: bool,
                       ?client_side_monitoring_client_id: String,
                       ?client_side_monitoring_host: String,
@@ -98,7 +99,7 @@ module Aws
                         key_attributes: {
                           key_usage: ("TR31_B0_BASE_DERIVATION_KEY" | "TR31_C0_CARD_VERIFICATION_KEY" | "TR31_D0_SYMMETRIC_DATA_ENCRYPTION_KEY" | "TR31_D1_ASYMMETRIC_KEY_FOR_DATA_ENCRYPTION" | "TR31_E0_EMV_MKEY_APP_CRYPTOGRAMS" | "TR31_E1_EMV_MKEY_CONFIDENTIALITY" | "TR31_E2_EMV_MKEY_INTEGRITY" | "TR31_E4_EMV_MKEY_DYNAMIC_NUMBERS" | "TR31_E5_EMV_MKEY_CARD_PERSONALIZATION" | "TR31_E6_EMV_MKEY_OTHER" | "TR31_K0_KEY_ENCRYPTION_KEY" | "TR31_K1_KEY_BLOCK_PROTECTION_KEY" | "TR31_K3_ASYMMETRIC_KEY_FOR_KEY_AGREEMENT" | "TR31_M3_ISO_9797_3_MAC_KEY" | "TR31_M1_ISO_9797_1_MAC_KEY" | "TR31_M6_ISO_9797_5_CMAC_KEY" | "TR31_M7_HMAC_KEY" | "TR31_P0_PIN_ENCRYPTION_KEY" | "TR31_P1_PIN_GENERATION_KEY" | "TR31_S0_ASYMMETRIC_KEY_FOR_DIGITAL_SIGNATURE" | "TR31_V1_IBM3624_PIN_VERIFICATION_KEY" | "TR31_V2_VISA_PIN_VERIFICATION_KEY" | "TR31_K2_TR34_ASYMMETRIC_KEY"),
                           key_class: ("SYMMETRIC_KEY" | "ASYMMETRIC_KEY_PAIR" | "PRIVATE_KEY" | "PUBLIC_KEY"),
-                          key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521"),
+                          key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "HMAC_SHA256" | "HMAC_SHA384" | "HMAC_SHA512" | "HMAC_SHA224" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521"),
                           key_modes_of_use: {
                             encrypt: bool?,
                             decrypt: bool?,
@@ -111,7 +112,7 @@ module Aws
                             no_restrictions: bool?
                           }
                         },
-                        ?key_check_value_algorithm: ("CMAC" | "ANSI_X9_24"),
+                        ?key_check_value_algorithm: ("CMAC" | "ANSI_X9_24" | "HMAC"),
                         exportable: bool,
                         ?enabled: bool,
                         ?tags: Array[
@@ -202,7 +203,7 @@ module Aws
                             private_key_identifier: ::String,
                             certificate_authority_public_key_identifier: ::String,
                             public_key_certificate: ::String,
-                            derive_key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256"),
+                            derive_key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "HMAC_SHA256" | "HMAC_SHA384" | "HMAC_SHA512" | "HMAC_SHA224"),
                             key_derivation_function: ("NIST_SP800" | "ANSI_X963"),
                             key_derivation_hash_algorithm: ("SHA_256" | "SHA_384" | "SHA_512"),
                             derivation_data: {
@@ -231,7 +232,7 @@ module Aws
                           export_dukpt_initial_key: {
                             key_serial_number: ::String
                           }?,
-                          key_check_value_algorithm: ("CMAC" | "ANSI_X9_24")?
+                          key_check_value_algorithm: ("CMAC" | "ANSI_X9_24" | "HMAC")?
                         }
                       ) -> _ExportKeyResponseSuccess
                     | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _ExportKeyResponseSuccess
@@ -260,14 +261,14 @@ module Aws
         include ::Seahorse::Client::_ResponseSuccess[Types::GetParametersForExportOutput]
         def signing_key_certificate: () -> ::String
         def signing_key_certificate_chain: () -> ::String
-        def signing_key_algorithm: () -> ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521")
+        def signing_key_algorithm: () -> ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "HMAC_SHA256" | "HMAC_SHA384" | "HMAC_SHA512" | "HMAC_SHA224" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521")
         def export_token: () -> ::String
         def parameters_valid_until_timestamp: () -> ::Time
       end
       # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/PaymentCryptography/Client.html#get_parameters_for_export-instance_method
       def get_parameters_for_export: (
                                        key_material_type: ("TR34_KEY_BLOCK" | "TR31_KEY_BLOCK" | "ROOT_PUBLIC_KEY_CERTIFICATE" | "TRUSTED_PUBLIC_KEY_CERTIFICATE" | "KEY_CRYPTOGRAM"),
-                                       signing_key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521")
+                                       signing_key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "HMAC_SHA256" | "HMAC_SHA384" | "HMAC_SHA512" | "HMAC_SHA224" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521")
                                      ) -> _GetParametersForExportResponseSuccess
                                    | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _GetParametersForExportResponseSuccess
@@ -275,14 +276,14 @@ module Aws
         include ::Seahorse::Client::_ResponseSuccess[Types::GetParametersForImportOutput]
         def wrapping_key_certificate: () -> ::String
         def wrapping_key_certificate_chain: () -> ::String
-        def wrapping_key_algorithm: () -> ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521")
+        def wrapping_key_algorithm: () -> ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "HMAC_SHA256" | "HMAC_SHA384" | "HMAC_SHA512" | "HMAC_SHA224" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521")
         def import_token: () -> ::String
         def parameters_valid_until_timestamp: () -> ::Time
       end
       # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/PaymentCryptography/Client.html#get_parameters_for_import-instance_method
       def get_parameters_for_import: (
                                        key_material_type: ("TR34_KEY_BLOCK" | "TR31_KEY_BLOCK" | "ROOT_PUBLIC_KEY_CERTIFICATE" | "TRUSTED_PUBLIC_KEY_CERTIFICATE" | "KEY_CRYPTOGRAM"),
-                                       wrapping_key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521")
+                                       wrapping_key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "HMAC_SHA256" | "HMAC_SHA384" | "HMAC_SHA512" | "HMAC_SHA224" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521")
                                      ) -> _GetParametersForImportResponseSuccess
                                    | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _GetParametersForImportResponseSuccess
@@ -308,7 +309,7 @@ module Aws
                             key_attributes: {
                               key_usage: ("TR31_B0_BASE_DERIVATION_KEY" | "TR31_C0_CARD_VERIFICATION_KEY" | "TR31_D0_SYMMETRIC_DATA_ENCRYPTION_KEY" | "TR31_D1_ASYMMETRIC_KEY_FOR_DATA_ENCRYPTION" | "TR31_E0_EMV_MKEY_APP_CRYPTOGRAMS" | "TR31_E1_EMV_MKEY_CONFIDENTIALITY" | "TR31_E2_EMV_MKEY_INTEGRITY" | "TR31_E4_EMV_MKEY_DYNAMIC_NUMBERS" | "TR31_E5_EMV_MKEY_CARD_PERSONALIZATION" | "TR31_E6_EMV_MKEY_OTHER" | "TR31_K0_KEY_ENCRYPTION_KEY" | "TR31_K1_KEY_BLOCK_PROTECTION_KEY" | "TR31_K3_ASYMMETRIC_KEY_FOR_KEY_AGREEMENT" | "TR31_M3_ISO_9797_3_MAC_KEY" | "TR31_M1_ISO_9797_1_MAC_KEY" | "TR31_M6_ISO_9797_5_CMAC_KEY" | "TR31_M7_HMAC_KEY" | "TR31_P0_PIN_ENCRYPTION_KEY" | "TR31_P1_PIN_GENERATION_KEY" | "TR31_S0_ASYMMETRIC_KEY_FOR_DIGITAL_SIGNATURE" | "TR31_V1_IBM3624_PIN_VERIFICATION_KEY" | "TR31_V2_VISA_PIN_VERIFICATION_KEY" | "TR31_K2_TR34_ASYMMETRIC_KEY"),
                               key_class: ("SYMMETRIC_KEY" | "ASYMMETRIC_KEY_PAIR" | "PRIVATE_KEY" | "PUBLIC_KEY"),
-                              key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521"),
+                              key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "HMAC_SHA256" | "HMAC_SHA384" | "HMAC_SHA512" | "HMAC_SHA224" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521"),
                               key_modes_of_use: {
                                 encrypt: bool?,
                                 decrypt: bool?,
@@ -327,7 +328,7 @@ module Aws
                             key_attributes: {
                               key_usage: ("TR31_B0_BASE_DERIVATION_KEY" | "TR31_C0_CARD_VERIFICATION_KEY" | "TR31_D0_SYMMETRIC_DATA_ENCRYPTION_KEY" | "TR31_D1_ASYMMETRIC_KEY_FOR_DATA_ENCRYPTION" | "TR31_E0_EMV_MKEY_APP_CRYPTOGRAMS" | "TR31_E1_EMV_MKEY_CONFIDENTIALITY" | "TR31_E2_EMV_MKEY_INTEGRITY" | "TR31_E4_EMV_MKEY_DYNAMIC_NUMBERS" | "TR31_E5_EMV_MKEY_CARD_PERSONALIZATION" | "TR31_E6_EMV_MKEY_OTHER" | "TR31_K0_KEY_ENCRYPTION_KEY" | "TR31_K1_KEY_BLOCK_PROTECTION_KEY" | "TR31_K3_ASYMMETRIC_KEY_FOR_KEY_AGREEMENT" | "TR31_M3_ISO_9797_3_MAC_KEY" | "TR31_M1_ISO_9797_1_MAC_KEY" | "TR31_M6_ISO_9797_5_CMAC_KEY" | "TR31_M7_HMAC_KEY" | "TR31_P0_PIN_ENCRYPTION_KEY" | "TR31_P1_PIN_GENERATION_KEY" | "TR31_S0_ASYMMETRIC_KEY_FOR_DIGITAL_SIGNATURE" | "TR31_V1_IBM3624_PIN_VERIFICATION_KEY" | "TR31_V2_VISA_PIN_VERIFICATION_KEY" | "TR31_K2_TR34_ASYMMETRIC_KEY"),
                               key_class: ("SYMMETRIC_KEY" | "ASYMMETRIC_KEY_PAIR" | "PRIVATE_KEY" | "PUBLIC_KEY"),
-                              key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521"),
+                              key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "HMAC_SHA256" | "HMAC_SHA384" | "HMAC_SHA512" | "HMAC_SHA224" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521"),
                               key_modes_of_use: {
                                 encrypt: bool?,
                                 decrypt: bool?,
@@ -359,7 +360,7 @@ module Aws
                             key_attributes: {
                               key_usage: ("TR31_B0_BASE_DERIVATION_KEY" | "TR31_C0_CARD_VERIFICATION_KEY" | "TR31_D0_SYMMETRIC_DATA_ENCRYPTION_KEY" | "TR31_D1_ASYMMETRIC_KEY_FOR_DATA_ENCRYPTION" | "TR31_E0_EMV_MKEY_APP_CRYPTOGRAMS" | "TR31_E1_EMV_MKEY_CONFIDENTIALITY" | "TR31_E2_EMV_MKEY_INTEGRITY" | "TR31_E4_EMV_MKEY_DYNAMIC_NUMBERS" | "TR31_E5_EMV_MKEY_CARD_PERSONALIZATION" | "TR31_E6_EMV_MKEY_OTHER" | "TR31_K0_KEY_ENCRYPTION_KEY" | "TR31_K1_KEY_BLOCK_PROTECTION_KEY" | "TR31_K3_ASYMMETRIC_KEY_FOR_KEY_AGREEMENT" | "TR31_M3_ISO_9797_3_MAC_KEY" | "TR31_M1_ISO_9797_1_MAC_KEY" | "TR31_M6_ISO_9797_5_CMAC_KEY" | "TR31_M7_HMAC_KEY" | "TR31_P0_PIN_ENCRYPTION_KEY" | "TR31_P1_PIN_GENERATION_KEY" | "TR31_S0_ASYMMETRIC_KEY_FOR_DIGITAL_SIGNATURE" | "TR31_V1_IBM3624_PIN_VERIFICATION_KEY" | "TR31_V2_VISA_PIN_VERIFICATION_KEY" | "TR31_K2_TR34_ASYMMETRIC_KEY"),
                               key_class: ("SYMMETRIC_KEY" | "ASYMMETRIC_KEY_PAIR" | "PRIVATE_KEY" | "PUBLIC_KEY"),
-                              key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521"),
+                              key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "HMAC_SHA256" | "HMAC_SHA384" | "HMAC_SHA512" | "HMAC_SHA224" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521"),
                               key_modes_of_use: {
                                 encrypt: bool?,
                                 decrypt: bool?,
@@ -381,7 +382,7 @@ module Aws
                             private_key_identifier: ::String,
                             certificate_authority_public_key_identifier: ::String,
                             public_key_certificate: ::String,
-                            derive_key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256"),
+                            derive_key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "HMAC_SHA256" | "HMAC_SHA384" | "HMAC_SHA512" | "HMAC_SHA224"),
                             key_derivation_function: ("NIST_SP800" | "ANSI_X963"),
                             key_derivation_hash_algorithm: ("SHA_256" | "SHA_384" | "SHA_512"),
                             derivation_data: {
@@ -390,7 +391,7 @@ module Aws
                             wrapped_key_block: ::String
                           }?
                         },
-                        ?key_check_value_algorithm: ("CMAC" | "ANSI_X9_24"),
+                        ?key_check_value_algorithm: ("CMAC" | "ANSI_X9_24" | "HMAC"),
                         ?enabled: bool,
                         ?tags: Array[
                           {

data/sig/resource.rbs CHANGED Viewed

@@ -18,6 +18,7 @@ module Aws
                         ?account_id: String,
                         ?active_endpoint_cache: bool,
                         ?adaptive_retry_wait_to_fill: bool,
+                        ?auth_scheme_preference: Array[String],
                         ?client_side_monitoring: bool,
                         ?client_side_monitoring_client_id: String,
                         ?client_side_monitoring_host: String,

data/sig/types.rbs CHANGED Viewed

@@ -37,7 +37,7 @@ module Aws::PaymentCryptography
     class CreateKeyInput
       attr_accessor key_attributes: Types::KeyAttributes
-      attr_accessor key_check_value_algorithm: ("CMAC" | "ANSI_X9_24")
+      attr_accessor key_check_value_algorithm: ("CMAC" | "ANSI_X9_24" | "HMAC")
       attr_accessor exportable: bool
       attr_accessor enabled: bool
       attr_accessor tags: ::Array[Types::Tag]
@@ -82,7 +82,7 @@ module Aws::PaymentCryptography
     class ExportAttributes
       attr_accessor export_dukpt_initial_key: Types::ExportDukptInitialKey
-      attr_accessor key_check_value_algorithm: ("CMAC" | "ANSI_X9_24")
+      attr_accessor key_check_value_algorithm: ("CMAC" | "ANSI_X9_24" | "HMAC")
       SENSITIVE: []
     end
@@ -90,7 +90,7 @@ module Aws::PaymentCryptography
       attr_accessor private_key_identifier: ::String
       attr_accessor certificate_authority_public_key_identifier: ::String
       attr_accessor public_key_certificate: ::String
-      attr_accessor derive_key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256")
+      attr_accessor derive_key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "HMAC_SHA256" | "HMAC_SHA384" | "HMAC_SHA512" | "HMAC_SHA224")
       attr_accessor key_derivation_function: ("NIST_SP800" | "ANSI_X963")
       attr_accessor key_derivation_hash_algorithm: ("SHA_256" | "SHA_384" | "SHA_512")
       attr_accessor derivation_data: Types::DiffieHellmanDerivationData
@@ -180,14 +180,14 @@ module Aws::PaymentCryptography
     class GetParametersForExportInput
       attr_accessor key_material_type: ("TR34_KEY_BLOCK" | "TR31_KEY_BLOCK" | "ROOT_PUBLIC_KEY_CERTIFICATE" | "TRUSTED_PUBLIC_KEY_CERTIFICATE" | "KEY_CRYPTOGRAM")
-      attr_accessor signing_key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521")
+      attr_accessor signing_key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "HMAC_SHA256" | "HMAC_SHA384" | "HMAC_SHA512" | "HMAC_SHA224" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521")
       SENSITIVE: []
     end
     class GetParametersForExportOutput
       attr_accessor signing_key_certificate: ::String
       attr_accessor signing_key_certificate_chain: ::String
-      attr_accessor signing_key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521")
+      attr_accessor signing_key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "HMAC_SHA256" | "HMAC_SHA384" | "HMAC_SHA512" | "HMAC_SHA224" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521")
       attr_accessor export_token: ::String
       attr_accessor parameters_valid_until_timestamp: ::Time
       SENSITIVE: [:signing_key_certificate, :signing_key_certificate_chain]
@@ -195,14 +195,14 @@ module Aws::PaymentCryptography
     class GetParametersForImportInput
       attr_accessor key_material_type: ("TR34_KEY_BLOCK" | "TR31_KEY_BLOCK" | "ROOT_PUBLIC_KEY_CERTIFICATE" | "TRUSTED_PUBLIC_KEY_CERTIFICATE" | "KEY_CRYPTOGRAM")
-      attr_accessor wrapping_key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521")
+      attr_accessor wrapping_key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "HMAC_SHA256" | "HMAC_SHA384" | "HMAC_SHA512" | "HMAC_SHA224" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521")
       SENSITIVE: []
     end
     class GetParametersForImportOutput
       attr_accessor wrapping_key_certificate: ::String
       attr_accessor wrapping_key_certificate_chain: ::String
-      attr_accessor wrapping_key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521")
+      attr_accessor wrapping_key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "HMAC_SHA256" | "HMAC_SHA384" | "HMAC_SHA512" | "HMAC_SHA224" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521")
       attr_accessor import_token: ::String
       attr_accessor parameters_valid_until_timestamp: ::Time
       SENSITIVE: [:wrapping_key_certificate, :wrapping_key_certificate_chain]
@@ -223,7 +223,7 @@ module Aws::PaymentCryptography
       attr_accessor private_key_identifier: ::String
       attr_accessor certificate_authority_public_key_identifier: ::String
       attr_accessor public_key_certificate: ::String
-      attr_accessor derive_key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256")
+      attr_accessor derive_key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "HMAC_SHA256" | "HMAC_SHA384" | "HMAC_SHA512" | "HMAC_SHA224")
       attr_accessor key_derivation_function: ("NIST_SP800" | "ANSI_X963")
       attr_accessor key_derivation_hash_algorithm: ("SHA_256" | "SHA_384" | "SHA_512")
       attr_accessor derivation_data: Types::DiffieHellmanDerivationData
@@ -242,7 +242,7 @@ module Aws::PaymentCryptography
     class ImportKeyInput
       attr_accessor key_material: Types::ImportKeyMaterial
-      attr_accessor key_check_value_algorithm: ("CMAC" | "ANSI_X9_24")
+      attr_accessor key_check_value_algorithm: ("CMAC" | "ANSI_X9_24" | "HMAC")
       attr_accessor enabled: bool
       attr_accessor tags: ::Array[Types::Tag]
       SENSITIVE: []
@@ -304,7 +304,7 @@ module Aws::PaymentCryptography
       attr_accessor key_arn: ::String
       attr_accessor key_attributes: Types::KeyAttributes
       attr_accessor key_check_value: ::String
-      attr_accessor key_check_value_algorithm: ("CMAC" | "ANSI_X9_24")
+      attr_accessor key_check_value_algorithm: ("CMAC" | "ANSI_X9_24" | "HMAC")
       attr_accessor enabled: bool
       attr_accessor exportable: bool
       attr_accessor key_state: ("CREATE_IN_PROGRESS" | "CREATE_COMPLETE" | "DELETE_PENDING" | "DELETE_COMPLETE")
@@ -321,7 +321,7 @@ module Aws::PaymentCryptography
     class KeyAttributes
       attr_accessor key_usage: ("TR31_B0_BASE_DERIVATION_KEY" | "TR31_C0_CARD_VERIFICATION_KEY" | "TR31_D0_SYMMETRIC_DATA_ENCRYPTION_KEY" | "TR31_D1_ASYMMETRIC_KEY_FOR_DATA_ENCRYPTION" | "TR31_E0_EMV_MKEY_APP_CRYPTOGRAMS" | "TR31_E1_EMV_MKEY_CONFIDENTIALITY" | "TR31_E2_EMV_MKEY_INTEGRITY" | "TR31_E4_EMV_MKEY_DYNAMIC_NUMBERS" | "TR31_E5_EMV_MKEY_CARD_PERSONALIZATION" | "TR31_E6_EMV_MKEY_OTHER" | "TR31_K0_KEY_ENCRYPTION_KEY" | "TR31_K1_KEY_BLOCK_PROTECTION_KEY" | "TR31_K3_ASYMMETRIC_KEY_FOR_KEY_AGREEMENT" | "TR31_M3_ISO_9797_3_MAC_KEY" | "TR31_M1_ISO_9797_1_MAC_KEY" | "TR31_M6_ISO_9797_5_CMAC_KEY" | "TR31_M7_HMAC_KEY" | "TR31_P0_PIN_ENCRYPTION_KEY" | "TR31_P1_PIN_GENERATION_KEY" | "TR31_S0_ASYMMETRIC_KEY_FOR_DIGITAL_SIGNATURE" | "TR31_V1_IBM3624_PIN_VERIFICATION_KEY" | "TR31_V2_VISA_PIN_VERIFICATION_KEY" | "TR31_K2_TR34_ASYMMETRIC_KEY")
       attr_accessor key_class: ("SYMMETRIC_KEY" | "ASYMMETRIC_KEY_PAIR" | "PRIVATE_KEY" | "PUBLIC_KEY")
-      attr_accessor key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521")
+      attr_accessor key_algorithm: ("TDES_2KEY" | "TDES_3KEY" | "AES_128" | "AES_192" | "AES_256" | "HMAC_SHA256" | "HMAC_SHA384" | "HMAC_SHA512" | "HMAC_SHA224" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521")
       attr_accessor key_modes_of_use: Types::KeyModesOfUse
       SENSITIVE: []
     end
@@ -504,7 +504,7 @@ module Aws::PaymentCryptography
       attr_accessor wrapped_key_material_format: ("KEY_CRYPTOGRAM" | "TR31_KEY_BLOCK" | "TR34_KEY_BLOCK")
       attr_accessor key_material: ::String
       attr_accessor key_check_value: ::String
-      attr_accessor key_check_value_algorithm: ("CMAC" | "ANSI_X9_24")
+      attr_accessor key_check_value_algorithm: ("CMAC" | "ANSI_X9_24" | "HMAC")
       SENSITIVE: [:key_material]
     end
   end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-paymentcryptography
 version: !ruby/object:Gem::Version
-  version: 1.35.0
+  version: 1.37.0
 platform: ruby
 authors:
 - Amazon Web Services
@@ -18,7 +18,7 @@ dependencies:
         version: '3'
     - - ">="
       - !ruby/object:Gem::Version
-        version: 3.225.0
+        version: 3.227.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
@@ -28,7 +28,7 @@ dependencies:
         version: '3'
     - - ">="
       - !ruby/object:Gem::Version
-        version: 3.225.0
+        version: 3.227.0
 - !ruby/object:Gem::Dependency
   name: aws-sigv4
   requirement: !ruby/object:Gem::Requirement