@aws-sdk/client-payment-cryptography-data 3.349.0

package/dist-types/commands/GenerateCardValidationDataCommand.d.ts

@@ -0,0 +1,144 @@
+import { EndpointParameterInstructions } from "@aws-sdk/middleware-endpoint";
+import { Command as $Command } from "@aws-sdk/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
+import { GenerateCardValidationDataInput, GenerateCardValidationDataOutput } from "../models/models_0";
+import { PaymentCryptographyDataClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../PaymentCryptographyDataClient";
+/**
+ * @public
+ */
+export { __MetadataBearer, $Command };
+/**
+ * @public
+ *
+ * The input for {@link GenerateCardValidationDataCommand}.
+ */
+export interface GenerateCardValidationDataCommandInput extends GenerateCardValidationDataInput {
+}
+/**
+ * @public
+ *
+ * The output of {@link GenerateCardValidationDataCommand}.
+ */
+export interface GenerateCardValidationDataCommandOutput extends GenerateCardValidationDataOutput, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>Generates card-related validation data using algorithms such as Card Verification Values (CVV/CVV2), Dynamic Card Verification Values (dCVV/dCVV2), or Card Security Codes (CSC). For more information, see <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/generate-card-data.html">Generate card data</a> in the <i>Amazon Web Services Payment Cryptography User Guide</i>.</p>
+ *          <p>This operation generates a CVV or CSC value that is printed on a payment credit or debit card during card production. The CVV or CSC, PAN (Primary Account Number) and expiration date of the card are required to check its validity during transaction processing. To begin this operation, a CVK (Card Verification Key) encryption key is required. You can use <a href="https://docs.aws.amazon.com/payment-cryptography/latest/APIReference/API_CreateKey.html">CreateKey</a> or <a href="https://docs.aws.amazon.com/payment-cryptography/latest/APIReference/API_ImportKey.html">ImportKey</a> to establish a CVK within Amazon Web Services Payment Cryptography. The <code>KeyModesOfUse</code> should be set to <code>Generate</code> and <code>Verify</code> for a CVK encryption key. </p>
+ *          <p>For information about valid keys for this operation, see <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/keys-validattributes.html">Understanding key attributes</a> and <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/crypto-ops-validkeys-ops.html">Key types for specific data operations</a> in the <i>Amazon Web Services Payment Cryptography User Guide</i>. </p>
+ *          <p>
+ *             <b>Cross-account use</b>: This operation can't be used across different Amazon Web Services accounts.</p>
+ *          <p>
+ *             <b>Related operations:</b>
+ *          </p>
+ *          <ul>
+ *             <li>
+ *                <p>
+ *                   <a href="https://docs.aws.amazon.com/payment-cryptography/latest/APIReference/API_ImportKey.html">ImportKey</a>
+ *                </p>
+ *             </li>
+ *             <li>
+ *                <p>
+ *                   <a>VerifyCardValidationData</a>
+ *                </p>
+ *             </li>
+ *          </ul>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { PaymentCryptographyDataClient, GenerateCardValidationDataCommand } from "@aws-sdk/client-payment-cryptography-data"; // ES Modules import
+ * // const { PaymentCryptographyDataClient, GenerateCardValidationDataCommand } = require("@aws-sdk/client-payment-cryptography-data"); // CommonJS import
+ * const client = new PaymentCryptographyDataClient(config);
+ * const input = { // GenerateCardValidationDataInput
+ *   KeyIdentifier: "STRING_VALUE", // required
+ *   PrimaryAccountNumber: "STRING_VALUE", // required
+ *   GenerationAttributes: { // CardGenerationAttributes Union: only one key present
+ *     AmexCardSecurityCodeVersion1: { // AmexCardSecurityCodeVersion1
+ *       CardExpiryDate: "STRING_VALUE", // required
+ *     },
+ *     AmexCardSecurityCodeVersion2: { // AmexCardSecurityCodeVersion2
+ *       CardExpiryDate: "STRING_VALUE", // required
+ *       ServiceCode: "STRING_VALUE", // required
+ *     },
+ *     CardVerificationValue1: { // CardVerificationValue1
+ *       CardExpiryDate: "STRING_VALUE", // required
+ *       ServiceCode: "STRING_VALUE", // required
+ *     },
+ *     CardVerificationValue2: { // CardVerificationValue2
+ *       CardExpiryDate: "STRING_VALUE", // required
+ *     },
+ *     CardHolderVerificationValue: { // CardHolderVerificationValue
+ *       UnpredictableNumber: "STRING_VALUE", // required
+ *       PanSequenceNumber: "STRING_VALUE", // required
+ *       ApplicationTransactionCounter: "STRING_VALUE", // required
+ *     },
+ *     DynamicCardVerificationCode: { // DynamicCardVerificationCode
+ *       UnpredictableNumber: "STRING_VALUE", // required
+ *       PanSequenceNumber: "STRING_VALUE", // required
+ *       ApplicationTransactionCounter: "STRING_VALUE", // required
+ *       TrackData: "STRING_VALUE", // required
+ *     },
+ *     DynamicCardVerificationValue: { // DynamicCardVerificationValue
+ *       PanSequenceNumber: "STRING_VALUE", // required
+ *       CardExpiryDate: "STRING_VALUE", // required
+ *       ServiceCode: "STRING_VALUE", // required
+ *       ApplicationTransactionCounter: "STRING_VALUE", // required
+ *     },
+ *   },
+ *   ValidationDataLength: Number("int"),
+ * };
+ * const command = new GenerateCardValidationDataCommand(input);
+ * const response = await client.send(command);
+ * // { // GenerateCardValidationDataOutput
+ * //   KeyArn: "STRING_VALUE", // required
+ * //   KeyCheckValue: "STRING_VALUE", // required
+ * //   ValidationData: "STRING_VALUE", // required
+ * // };
+ *
+ * ```
+ *
+ * @param GenerateCardValidationDataCommandInput - {@link GenerateCardValidationDataCommandInput}
+ * @returns {@link GenerateCardValidationDataCommandOutput}
+ * @see {@link GenerateCardValidationDataCommandInput} for command's `input` shape.
+ * @see {@link GenerateCardValidationDataCommandOutput} for command's `response` shape.
+ * @see {@link PaymentCryptographyDataClientResolvedConfig | config} for PaymentCryptographyDataClient's `config` shape.
+ *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You do not have sufficient access to perform this action.</p>
+ *
+ * @throws {@link InternalServerException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception, or failure.</p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The request was denied due to an invalid resource error.</p>
+ *
+ * @throws {@link ThrottlingException} (client fault)
+ *  <p>The request was denied due to request throttling.</p>
+ *
+ * @throws {@link ValidationException} (client fault)
+ *  <p>The request was denied due to an invalid request error.</p>
+ *
+ * @throws {@link PaymentCryptographyDataServiceException}
+ * <p>Base exception class for all service exceptions from PaymentCryptographyData service.</p>
+ *
+ */
+export declare class GenerateCardValidationDataCommand extends $Command<GenerateCardValidationDataCommandInput, GenerateCardValidationDataCommandOutput, PaymentCryptographyDataClientResolvedConfig> {
+    readonly input: GenerateCardValidationDataCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: GenerateCardValidationDataCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: PaymentCryptographyDataClientResolvedConfig, options?: __HttpHandlerOptions): Handler<GenerateCardValidationDataCommandInput, GenerateCardValidationDataCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}

package/dist-types/commands/GenerateMacCommand.d.ts

@@ -0,0 +1,134 @@
+import { EndpointParameterInstructions } from "@aws-sdk/middleware-endpoint";
+import { Command as $Command } from "@aws-sdk/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
+import { GenerateMacInput, GenerateMacOutput } from "../models/models_0";
+import { PaymentCryptographyDataClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../PaymentCryptographyDataClient";
+/**
+ * @public
+ */
+export { __MetadataBearer, $Command };
+/**
+ * @public
+ *
+ * The input for {@link GenerateMacCommand}.
+ */
+export interface GenerateMacCommandInput extends GenerateMacInput {
+}
+/**
+ * @public
+ *
+ * The output of {@link GenerateMacCommand}.
+ */
+export interface GenerateMacCommandOutput extends GenerateMacOutput, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>Generates a Message Authentication Code (MAC) cryptogram within Amazon Web Services Payment Cryptography. </p>
+ *          <p>You can use this operation when keys won't be shared but mutual data is present on both ends for validation. In this case, known data values are used to generate a MAC on both ends for comparision without sending or receiving data in ciphertext or plaintext. You can use this operation to generate a DUPKT, HMAC or EMV MAC by setting generation attributes and algorithm to the associated values. The MAC generation encryption key must have valid values for <code>KeyUsage</code> such as <code>TR31_M7_HMAC_KEY</code> for HMAC generation, and they key must have <code>KeyModesOfUse</code> set to <code>Generate</code> and <code>Verify</code>.</p>
+ *          <p>For information about valid keys for this operation, see <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/keys-validattributes.html">Understanding key attributes</a> and <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/crypto-ops-validkeys-ops.html">Key types for specific data operations</a> in the <i>Amazon Web Services Payment Cryptography User Guide</i>. </p>
+ *          <p>
+ *             <b>Cross-account use</b>: This operation can't be used across different Amazon Web Services accounts.</p>
+ *          <p>
+ *             <b>Related operations:</b>
+ *          </p>
+ *          <ul>
+ *             <li>
+ *                <p>
+ *                   <a>VerifyMac</a>
+ *                </p>
+ *             </li>
+ *          </ul>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { PaymentCryptographyDataClient, GenerateMacCommand } from "@aws-sdk/client-payment-cryptography-data"; // ES Modules import
+ * // const { PaymentCryptographyDataClient, GenerateMacCommand } = require("@aws-sdk/client-payment-cryptography-data"); // CommonJS import
+ * const client = new PaymentCryptographyDataClient(config);
+ * const input = { // GenerateMacInput
+ *   KeyIdentifier: "STRING_VALUE", // required
+ *   MessageData: "STRING_VALUE", // required
+ *   GenerationAttributes: { // MacAttributes Union: only one key present
+ *     Algorithm: "STRING_VALUE",
+ *     EmvMac: { // MacAlgorithmEmv
+ *       MajorKeyDerivationMode: "STRING_VALUE", // required
+ *       PrimaryAccountNumber: "STRING_VALUE", // required
+ *       PanSequenceNumber: "STRING_VALUE", // required
+ *       SessionKeyDerivationMode: "STRING_VALUE", // required
+ *       SessionKeyDerivationValue: { // SessionKeyDerivationValue Union: only one key present
+ *         ApplicationCryptogram: "STRING_VALUE",
+ *         ApplicationTransactionCounter: "STRING_VALUE",
+ *       },
+ *     },
+ *     DukptIso9797Algorithm1: { // MacAlgorithmDukpt
+ *       KeySerialNumber: "STRING_VALUE", // required
+ *       DukptKeyVariant: "STRING_VALUE", // required
+ *       DukptDerivationType: "STRING_VALUE",
+ *     },
+ *     DukptIso9797Algorithm3: {
+ *       KeySerialNumber: "STRING_VALUE", // required
+ *       DukptKeyVariant: "STRING_VALUE", // required
+ *       DukptDerivationType: "STRING_VALUE",
+ *     },
+ *     DukptCmac: {
+ *       KeySerialNumber: "STRING_VALUE", // required
+ *       DukptKeyVariant: "STRING_VALUE", // required
+ *       DukptDerivationType: "STRING_VALUE",
+ *     },
+ *   },
+ *   MacLength: Number("int"),
+ * };
+ * const command = new GenerateMacCommand(input);
+ * const response = await client.send(command);
+ * // { // GenerateMacOutput
+ * //   KeyArn: "STRING_VALUE", // required
+ * //   KeyCheckValue: "STRING_VALUE", // required
+ * //   Mac: "STRING_VALUE", // required
+ * // };
+ *
+ * ```
+ *
+ * @param GenerateMacCommandInput - {@link GenerateMacCommandInput}
+ * @returns {@link GenerateMacCommandOutput}
+ * @see {@link GenerateMacCommandInput} for command's `input` shape.
+ * @see {@link GenerateMacCommandOutput} for command's `response` shape.
+ * @see {@link PaymentCryptographyDataClientResolvedConfig | config} for PaymentCryptographyDataClient's `config` shape.
+ *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You do not have sufficient access to perform this action.</p>
+ *
+ * @throws {@link InternalServerException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception, or failure.</p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The request was denied due to an invalid resource error.</p>
+ *
+ * @throws {@link ThrottlingException} (client fault)
+ *  <p>The request was denied due to request throttling.</p>
+ *
+ * @throws {@link ValidationException} (client fault)
+ *  <p>The request was denied due to an invalid request error.</p>
+ *
+ * @throws {@link PaymentCryptographyDataServiceException}
+ * <p>Base exception class for all service exceptions from PaymentCryptographyData service.</p>
+ *
+ */
+export declare class GenerateMacCommand extends $Command<GenerateMacCommandInput, GenerateMacCommandOutput, PaymentCryptographyDataClientResolvedConfig> {
+    readonly input: GenerateMacCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: GenerateMacCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: PaymentCryptographyDataClientResolvedConfig, options?: __HttpHandlerOptions): Handler<GenerateMacCommandInput, GenerateMacCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}

package/dist-types/commands/GeneratePinDataCommand.d.ts

@@ -0,0 +1,155 @@
+import { EndpointParameterInstructions } from "@aws-sdk/middleware-endpoint";
+import { Command as $Command } from "@aws-sdk/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
+import { GeneratePinDataInput, GeneratePinDataOutput } from "../models/models_0";
+import { PaymentCryptographyDataClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../PaymentCryptographyDataClient";
+/**
+ * @public
+ */
+export { __MetadataBearer, $Command };
+/**
+ * @public
+ *
+ * The input for {@link GeneratePinDataCommand}.
+ */
+export interface GeneratePinDataCommandInput extends GeneratePinDataInput {
+}
+/**
+ * @public
+ *
+ * The output of {@link GeneratePinDataCommand}.
+ */
+export interface GeneratePinDataCommandOutput extends GeneratePinDataOutput, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>Generates pin-related data such as PIN, PIN Verification Value (PVV), PIN Block, and PIN Offset during new card issuance or reissuance. For more information, see <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/generate-pin-data.html">Generate PIN data</a> in the <i>Amazon Web Services Payment Cryptography User Guide</i>.</p>
+ *          <p>PIN data is never transmitted in clear to or from Amazon Web Services Payment Cryptography. This operation generates PIN, PVV, or PIN Offset and then encrypts it using Pin Encryption Key (PEK) to create an <code>EncryptedPinBlock</code> for transmission from Amazon Web Services Payment Cryptography. This operation uses a separate Pin Verification Key (PVK) for VISA PVV generation. </p>
+ *          <p>For information about valid keys for this operation, see <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/keys-validattributes.html">Understanding key attributes</a> and <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/crypto-ops-validkeys-ops.html">Key types for specific data operations</a> in the <i>Amazon Web Services Payment Cryptography User Guide</i>.</p>
+ *          <p>
+ *             <b>Cross-account use</b>: This operation can't be used across different Amazon Web Services accounts.</p>
+ *          <p>
+ *             <b>Related operations:</b>
+ *          </p>
+ *          <ul>
+ *             <li>
+ *                <p>
+ *                   <a>GenerateCardValidationData</a>
+ *                </p>
+ *             </li>
+ *             <li>
+ *                <p>
+ *                   <a>TranslatePinData</a>
+ *                </p>
+ *             </li>
+ *             <li>
+ *                <p>
+ *                   <a>VerifyPinData</a>
+ *                </p>
+ *             </li>
+ *          </ul>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { PaymentCryptographyDataClient, GeneratePinDataCommand } from "@aws-sdk/client-payment-cryptography-data"; // ES Modules import
+ * // const { PaymentCryptographyDataClient, GeneratePinDataCommand } = require("@aws-sdk/client-payment-cryptography-data"); // CommonJS import
+ * const client = new PaymentCryptographyDataClient(config);
+ * const input = { // GeneratePinDataInput
+ *   GenerationKeyIdentifier: "STRING_VALUE", // required
+ *   EncryptionKeyIdentifier: "STRING_VALUE", // required
+ *   GenerationAttributes: { // PinGenerationAttributes Union: only one key present
+ *     VisaPin: { // VisaPin
+ *       PinVerificationKeyIndex: Number("int"), // required
+ *     },
+ *     VisaPinVerificationValue: { // VisaPinVerificationValue
+ *       EncryptedPinBlock: "STRING_VALUE", // required
+ *       PinVerificationKeyIndex: Number("int"), // required
+ *     },
+ *     Ibm3624PinOffset: { // Ibm3624PinOffset
+ *       EncryptedPinBlock: "STRING_VALUE", // required
+ *       DecimalizationTable: "STRING_VALUE", // required
+ *       PinValidationDataPadCharacter: "STRING_VALUE", // required
+ *       PinValidationData: "STRING_VALUE", // required
+ *     },
+ *     Ibm3624NaturalPin: { // Ibm3624NaturalPin
+ *       DecimalizationTable: "STRING_VALUE", // required
+ *       PinValidationDataPadCharacter: "STRING_VALUE", // required
+ *       PinValidationData: "STRING_VALUE", // required
+ *     },
+ *     Ibm3624RandomPin: { // Ibm3624RandomPin
+ *       DecimalizationTable: "STRING_VALUE", // required
+ *       PinValidationDataPadCharacter: "STRING_VALUE", // required
+ *       PinValidationData: "STRING_VALUE", // required
+ *     },
+ *     Ibm3624PinFromOffset: { // Ibm3624PinFromOffset
+ *       DecimalizationTable: "STRING_VALUE", // required
+ *       PinValidationDataPadCharacter: "STRING_VALUE", // required
+ *       PinValidationData: "STRING_VALUE", // required
+ *       PinOffset: "STRING_VALUE", // required
+ *     },
+ *   },
+ *   PinDataLength: Number("int"),
+ *   PrimaryAccountNumber: "STRING_VALUE", // required
+ *   PinBlockFormat: "STRING_VALUE", // required
+ * };
+ * const command = new GeneratePinDataCommand(input);
+ * const response = await client.send(command);
+ * // { // GeneratePinDataOutput
+ * //   GenerationKeyArn: "STRING_VALUE", // required
+ * //   GenerationKeyCheckValue: "STRING_VALUE", // required
+ * //   EncryptionKeyArn: "STRING_VALUE", // required
+ * //   EncryptionKeyCheckValue: "STRING_VALUE", // required
+ * //   EncryptedPinBlock: "STRING_VALUE", // required
+ * //   PinData: { // PinData Union: only one key present
+ * //     PinOffset: "STRING_VALUE",
+ * //     VerificationValue: "STRING_VALUE",
+ * //   },
+ * // };
+ *
+ * ```
+ *
+ * @param GeneratePinDataCommandInput - {@link GeneratePinDataCommandInput}
+ * @returns {@link GeneratePinDataCommandOutput}
+ * @see {@link GeneratePinDataCommandInput} for command's `input` shape.
+ * @see {@link GeneratePinDataCommandOutput} for command's `response` shape.
+ * @see {@link PaymentCryptographyDataClientResolvedConfig | config} for PaymentCryptographyDataClient's `config` shape.
+ *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You do not have sufficient access to perform this action.</p>
+ *
+ * @throws {@link InternalServerException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception, or failure.</p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The request was denied due to an invalid resource error.</p>
+ *
+ * @throws {@link ThrottlingException} (client fault)
+ *  <p>The request was denied due to request throttling.</p>
+ *
+ * @throws {@link ValidationException} (client fault)
+ *  <p>The request was denied due to an invalid request error.</p>
+ *
+ * @throws {@link PaymentCryptographyDataServiceException}
+ * <p>Base exception class for all service exceptions from PaymentCryptographyData service.</p>
+ *
+ */
+export declare class GeneratePinDataCommand extends $Command<GeneratePinDataCommandInput, GeneratePinDataCommandOutput, PaymentCryptographyDataClientResolvedConfig> {
+    readonly input: GeneratePinDataCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: GeneratePinDataCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: PaymentCryptographyDataClientResolvedConfig, options?: __HttpHandlerOptions): Handler<GeneratePinDataCommandInput, GeneratePinDataCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}

package/dist-types/commands/ReEncryptDataCommand.d.ts

@@ -0,0 +1,150 @@
+import { EndpointParameterInstructions } from "@aws-sdk/middleware-endpoint";
+import { Command as $Command } from "@aws-sdk/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
+import { ReEncryptDataInput, ReEncryptDataOutput } from "../models/models_0";
+import { PaymentCryptographyDataClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../PaymentCryptographyDataClient";
+/**
+ * @public
+ */
+export { __MetadataBearer, $Command };
+/**
+ * @public
+ *
+ * The input for {@link ReEncryptDataCommand}.
+ */
+export interface ReEncryptDataCommandInput extends ReEncryptDataInput {
+}
+/**
+ * @public
+ *
+ * The output of {@link ReEncryptDataCommand}.
+ */
+export interface ReEncryptDataCommandOutput extends ReEncryptDataOutput, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>Re-encrypt ciphertext using DUKPT, Symmetric and Asymmetric  Data Encryption Keys. </p>
+ *          <p>You can either generate an encryption key within Amazon Web Services Payment Cryptography by calling <a href="https://docs.aws.amazon.com/payment-cryptography/latest/APIReference/API_CreateKey.html">CreateKey</a> or import your own encryption key by calling <a href="https://docs.aws.amazon.com/payment-cryptography/latest/APIReference/API_ImportKey.html">ImportKey</a>. The <code>KeyArn</code> for use with this operation must be in a compatible key state with <code>KeyModesOfUse</code> set to <code>Encrypt</code>. In asymmetric encryption, ciphertext is encrypted using public component (imported by calling <a href="https://docs.aws.amazon.com/payment-cryptography/latest/APIReference/API_ImportKey.html">ImportKey</a>) of the asymmetric key pair created outside of Amazon Web Services Payment Cryptography. </p>
+ *          <p>For symmetric and DUKPT encryption, Amazon Web Services Payment Cryptography supports <code>TDES</code> and <code>AES</code> algorithms. For asymmetric encryption, Amazon Web Services Payment Cryptography supports <code>RSA</code>. To encrypt using DUKPT, a DUKPT key must already exist within your account with <code>KeyModesOfUse</code> set to <code>DeriveKey</code> or a new DUKPT can be generated by calling <a href="https://docs.aws.amazon.com/payment-cryptography/latest/APIReference/API_CreateKey.html">CreateKey</a>.</p>
+ *          <p>For information about valid keys for this operation, see <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/keys-validattributes.html">Understanding key attributes</a> and <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/crypto-ops-validkeys-ops.html">Key types for specific data operations</a> in the <i>Amazon Web Services Payment Cryptography User Guide</i>. </p>
+ *          <p>
+ *             <b>Cross-account use</b>: This operation can't be used across different Amazon Web Services accounts.</p>
+ *          <p>
+ *             <b>Related operations:</b>
+ *          </p>
+ *          <ul>
+ *             <li>
+ *                <p>
+ *                   <a>DecryptData</a>
+ *                </p>
+ *             </li>
+ *             <li>
+ *                <p>
+ *                   <a>EncryptData</a>
+ *                </p>
+ *             </li>
+ *             <li>
+ *                <p>
+ *                   <a href="https://docs.aws.amazon.com/payment-cryptography/latest/APIReference/API_GetPublicKeyCertificate.html">GetPublicCertificate</a>
+ *                </p>
+ *             </li>
+ *             <li>
+ *                <p>
+ *                   <a href="https://docs.aws.amazon.com/payment-cryptography/latest/APIReference/API_ImportKey.html">ImportKey</a>
+ *                </p>
+ *             </li>
+ *          </ul>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { PaymentCryptographyDataClient, ReEncryptDataCommand } from "@aws-sdk/client-payment-cryptography-data"; // ES Modules import
+ * // const { PaymentCryptographyDataClient, ReEncryptDataCommand } = require("@aws-sdk/client-payment-cryptography-data"); // CommonJS import
+ * const client = new PaymentCryptographyDataClient(config);
+ * const input = { // ReEncryptDataInput
+ *   IncomingKeyIdentifier: "STRING_VALUE", // required
+ *   OutgoingKeyIdentifier: "STRING_VALUE", // required
+ *   CipherText: "STRING_VALUE", // required
+ *   IncomingEncryptionAttributes: { // ReEncryptionAttributes Union: only one key present
+ *     Symmetric: { // SymmetricEncryptionAttributes
+ *       Mode: "STRING_VALUE", // required
+ *       InitializationVector: "STRING_VALUE",
+ *       PaddingType: "STRING_VALUE",
+ *     },
+ *     Dukpt: { // DukptEncryptionAttributes
+ *       KeySerialNumber: "STRING_VALUE", // required
+ *       Mode: "STRING_VALUE",
+ *       DukptKeyDerivationType: "STRING_VALUE",
+ *       DukptKeyVariant: "STRING_VALUE",
+ *       InitializationVector: "STRING_VALUE",
+ *     },
+ *   },
+ *   OutgoingEncryptionAttributes: {//  Union: only one key present
+ *     Symmetric: {
+ *       Mode: "STRING_VALUE", // required
+ *       InitializationVector: "STRING_VALUE",
+ *       PaddingType: "STRING_VALUE",
+ *     },
+ *     Dukpt: {
+ *       KeySerialNumber: "STRING_VALUE", // required
+ *       Mode: "STRING_VALUE",
+ *       DukptKeyDerivationType: "STRING_VALUE",
+ *       DukptKeyVariant: "STRING_VALUE",
+ *       InitializationVector: "STRING_VALUE",
+ *     },
+ *   },
+ * };
+ * const command = new ReEncryptDataCommand(input);
+ * const response = await client.send(command);
+ * // { // ReEncryptDataOutput
+ * //   KeyArn: "STRING_VALUE", // required
+ * //   KeyCheckValue: "STRING_VALUE", // required
+ * //   CipherText: "STRING_VALUE", // required
+ * // };
+ *
+ * ```
+ *
+ * @param ReEncryptDataCommandInput - {@link ReEncryptDataCommandInput}
+ * @returns {@link ReEncryptDataCommandOutput}
+ * @see {@link ReEncryptDataCommandInput} for command's `input` shape.
+ * @see {@link ReEncryptDataCommandOutput} for command's `response` shape.
+ * @see {@link PaymentCryptographyDataClientResolvedConfig | config} for PaymentCryptographyDataClient's `config` shape.
+ *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You do not have sufficient access to perform this action.</p>
+ *
+ * @throws {@link InternalServerException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception, or failure.</p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The request was denied due to an invalid resource error.</p>
+ *
+ * @throws {@link ThrottlingException} (client fault)
+ *  <p>The request was denied due to request throttling.</p>
+ *
+ * @throws {@link ValidationException} (client fault)
+ *  <p>The request was denied due to an invalid request error.</p>
+ *
+ * @throws {@link PaymentCryptographyDataServiceException}
+ * <p>Base exception class for all service exceptions from PaymentCryptographyData service.</p>
+ *
+ */
+export declare class ReEncryptDataCommand extends $Command<ReEncryptDataCommandInput, ReEncryptDataCommandOutput, PaymentCryptographyDataClientResolvedConfig> {
+    readonly input: ReEncryptDataCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: ReEncryptDataCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: PaymentCryptographyDataClientResolvedConfig, options?: __HttpHandlerOptions): Handler<ReEncryptDataCommandInput, ReEncryptDataCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}