@aws-sdk/client-payment-cryptography-data 3.899.0 → 3.903.0

package/README.md

@@ -258,6 +258,14 @@ ReEncryptData
 
 [Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/client/payment-cryptography-data/command/ReEncryptDataCommand/) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-payment-cryptography-data/Interface/ReEncryptDataCommandInput/) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-payment-cryptography-data/Interface/ReEncryptDataCommandOutput/)
 
+</details>
+<details>
+<summary>
+TranslateKeyMaterial
+</summary>
+
+[Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/client/payment-cryptography-data/command/TranslateKeyMaterialCommand/) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-payment-cryptography-data/Interface/TranslateKeyMaterialCommandInput/) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-payment-cryptography-data/Interface/TranslateKeyMaterialCommandOutput/)
+
 </details>
 <details>
 <summary>

package/dist-cjs/index.js

@@ -40,6 +40,7 @@ __export(index_exports, {
   DecryptDataOutputFilterSensitiveLog: () => DecryptDataOutputFilterSensitiveLog,
   DerivationMethodAttributes: () => DerivationMethodAttributes,
   DerivationMethodAttributesFilterSensitiveLog: () => DerivationMethodAttributesFilterSensitiveLog,
+  DiffieHellmanDerivationData: () => DiffieHellmanDerivationData,
   DiscoverDynamicCardVerificationCodeFilterSensitiveLog: () => DiscoverDynamicCardVerificationCodeFilterSensitiveLog,
   DukptDerivationType: () => DukptDerivationType,
   DukptEncryptionAttributesFilterSensitiveLog: () => DukptEncryptionAttributesFilterSensitiveLog,
@@ -47,7 +48,6 @@ __export(index_exports, {
   DukptKeyVariant: () => DukptKeyVariant,
   DynamicCardVerificationCodeFilterSensitiveLog: () => DynamicCardVerificationCodeFilterSensitiveLog,
   DynamicCardVerificationValueFilterSensitiveLog: () => DynamicCardVerificationValueFilterSensitiveLog,
-  EcdhDerivationAttributesFilterSensitiveLog: () => EcdhDerivationAttributesFilterSensitiveLog,
   Emv2000AttributesFilterSensitiveLog: () => Emv2000AttributesFilterSensitiveLog,
   EmvCommonAttributesFilterSensitiveLog: () => EmvCommonAttributesFilterSensitiveLog,
   EmvEncryptionAttributesFilterSensitiveLog: () => EmvEncryptionAttributesFilterSensitiveLog,
@@ -76,6 +76,9 @@ __export(index_exports, {
   Ibm3624PinOffsetFilterSensitiveLog: () => Ibm3624PinOffsetFilterSensitiveLog,
   Ibm3624PinVerificationFilterSensitiveLog: () => Ibm3624PinVerificationFilterSensitiveLog,
   Ibm3624RandomPinFilterSensitiveLog: () => Ibm3624RandomPinFilterSensitiveLog,
+  IncomingDiffieHellmanTr31KeyBlockFilterSensitiveLog: () => IncomingDiffieHellmanTr31KeyBlockFilterSensitiveLog,
+  IncomingKeyMaterial: () => IncomingKeyMaterial,
+  IncomingKeyMaterialFilterSensitiveLog: () => IncomingKeyMaterialFilterSensitiveLog,
   InternalServerException: () => InternalServerException,
   KeyCheckValueAlgorithm: () => KeyCheckValueAlgorithm,
   KeyDerivationFunction: () => KeyDerivationFunction,
@@ -86,6 +89,7 @@ __export(index_exports, {
   MacAttributesFilterSensitiveLog: () => MacAttributesFilterSensitiveLog,
   MajorKeyDerivationMode: () => MajorKeyDerivationMode,
   MasterCardAttributesFilterSensitiveLog: () => MasterCardAttributesFilterSensitiveLog,
+  OutgoingKeyMaterial: () => OutgoingKeyMaterial,
   PaddingType: () => PaddingType,
   PaymentCryptographyData: () => PaymentCryptographyData,
   PaymentCryptographyDataClient: () => PaymentCryptographyDataClient,
@@ -119,6 +123,9 @@ __export(index_exports, {
   SymmetricEncryptionAttributesFilterSensitiveLog: () => SymmetricEncryptionAttributesFilterSensitiveLog,
   SymmetricKeyAlgorithm: () => SymmetricKeyAlgorithm,
   ThrottlingException: () => ThrottlingException,
+  TranslateKeyMaterialCommand: () => TranslateKeyMaterialCommand,
+  TranslateKeyMaterialInputFilterSensitiveLog: () => TranslateKeyMaterialInputFilterSensitiveLog,
+  TranslateKeyMaterialOutputFilterSensitiveLog: () => TranslateKeyMaterialOutputFilterSensitiveLog,
   TranslatePinDataCommand: () => TranslatePinDataCommand,
   TranslatePinDataInputFilterSensitiveLog: () => TranslatePinDataInputFilterSensitiveLog,
   TranslatePinDataOutputFilterSensitiveLog: () => TranslatePinDataOutputFilterSensitiveLog,
@@ -143,6 +150,8 @@ __export(index_exports, {
   WrappedKeyFilterSensitiveLog: () => WrappedKeyFilterSensitiveLog,
   WrappedKeyMaterial: () => WrappedKeyMaterial,
   WrappedKeyMaterialFilterSensitiveLog: () => WrappedKeyMaterialFilterSensitiveLog,
+  WrappedKeyMaterialFormat: () => WrappedKeyMaterialFormat,
+  WrappedWorkingKeyFilterSensitiveLog: () => WrappedWorkingKeyFilterSensitiveLog,
   __Client: () => import_smithy_client.Client
 });
 module.exports = __toCommonJS(index_exports);
@@ -577,6 +586,13 @@ var DerivationMethodAttributes;
     return visitor._(value.$unknown[0], value.$unknown[1]);
   }, "visit");
 })(DerivationMethodAttributes || (DerivationMethodAttributes = {}));
+var DiffieHellmanDerivationData;
+((DiffieHellmanDerivationData3) => {
+  DiffieHellmanDerivationData3.visit = /* @__PURE__ */ __name((value, visitor) => {
+    if (value.SharedInformation !== void 0) return visitor.SharedInformation(value.SharedInformation);
+    return visitor._(value.$unknown[0], value.$unknown[1]);
+  }, "visit");
+})(DiffieHellmanDerivationData || (DiffieHellmanDerivationData = {}));
 var MacAlgorithm = {
   CMAC: "CMAC",
   HMAC: "HMAC",
@@ -634,6 +650,7 @@ var PinGenerationAttributes;
 })(PinGenerationAttributes || (PinGenerationAttributes = {}));
 var PinBlockFormatForPinData = {
   ISO_FORMAT_0: "ISO_FORMAT_0",
+  ISO_FORMAT_1: "ISO_FORMAT_1",
   ISO_FORMAT_3: "ISO_FORMAT_3",
   ISO_FORMAT_4: "ISO_FORMAT_4"
 };
@@ -645,6 +662,21 @@ var PinData;
     return visitor._(value.$unknown[0], value.$unknown[1]);
   }, "visit");
 })(PinData || (PinData = {}));
+var IncomingKeyMaterial;
+((IncomingKeyMaterial3) => {
+  IncomingKeyMaterial3.visit = /* @__PURE__ */ __name((value, visitor) => {
+    if (value.DiffieHellmanTr31KeyBlock !== void 0)
+      return visitor.DiffieHellmanTr31KeyBlock(value.DiffieHellmanTr31KeyBlock);
+    return visitor._(value.$unknown[0], value.$unknown[1]);
+  }, "visit");
+})(IncomingKeyMaterial || (IncomingKeyMaterial = {}));
+var OutgoingKeyMaterial;
+((OutgoingKeyMaterial3) => {
+  OutgoingKeyMaterial3.visit = /* @__PURE__ */ __name((value, visitor) => {
+    if (value.Tr31KeyBlock !== void 0) return visitor.Tr31KeyBlock(value.Tr31KeyBlock);
+    return visitor._(value.$unknown[0], value.$unknown[1]);
+  }, "visit");
+})(OutgoingKeyMaterial || (OutgoingKeyMaterial = {}));
 var ReEncryptionAttributes;
 ((ReEncryptionAttributes3) => {
   ReEncryptionAttributes3.visit = /* @__PURE__ */ __name((value, visitor) => {
@@ -653,6 +685,11 @@ var ReEncryptionAttributes;
     return visitor._(value.$unknown[0], value.$unknown[1]);
   }, "visit");
 })(ReEncryptionAttributes || (ReEncryptionAttributes = {}));
+var WrappedKeyMaterialFormat = {
+  KEY_CRYPTOGRAM: "KEY_CRYPTOGRAM",
+  TR31_KEY_BLOCK: "TR31_KEY_BLOCK",
+  TR34_KEY_BLOCK: "TR34_KEY_BLOCK"
+};
 var TranslationIsoFormats;
 ((TranslationIsoFormats3) => {
   TranslationIsoFormats3.visit = /* @__PURE__ */ __name((value, visitor) => {
@@ -843,14 +880,9 @@ var EncryptionDecryptionAttributesFilterSensitiveLog = /* @__PURE__ */ __name((o
   if (obj.Emv !== void 0) return { Emv: EmvEncryptionAttributesFilterSensitiveLog(obj.Emv) };
   if (obj.$unknown !== void 0) return { [obj.$unknown[0]]: "UNKNOWN" };
 }, "EncryptionDecryptionAttributesFilterSensitiveLog");
-var EcdhDerivationAttributesFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
-  ...obj,
-  ...obj.PublicKeyCertificate && { PublicKeyCertificate: import_smithy_client.SENSITIVE_STRING }
-}), "EcdhDerivationAttributesFilterSensitiveLog");
 var WrappedKeyMaterialFilterSensitiveLog = /* @__PURE__ */ __name((obj) => {
   if (obj.Tr31KeyBlock !== void 0) return { Tr31KeyBlock: import_smithy_client.SENSITIVE_STRING };
-  if (obj.DiffieHellmanSymmetricKey !== void 0)
-    return { DiffieHellmanSymmetricKey: EcdhDerivationAttributesFilterSensitiveLog(obj.DiffieHellmanSymmetricKey) };
+  if (obj.DiffieHellmanSymmetricKey !== void 0) return { DiffieHellmanSymmetricKey: obj.DiffieHellmanSymmetricKey };
   if (obj.$unknown !== void 0) return { [obj.$unknown[0]]: "UNKNOWN" };
 }, "WrappedKeyMaterialFilterSensitiveLog");
 var WrappedKeyFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
@@ -1028,6 +1060,18 @@ var Ibm3624PinVerificationFilterSensitiveLog = /* @__PURE__ */ __name((obj) => (
   ...obj.PinValidationData && { PinValidationData: import_smithy_client.SENSITIVE_STRING },
   ...obj.PinOffset && { PinOffset: import_smithy_client.SENSITIVE_STRING }
 }), "Ibm3624PinVerificationFilterSensitiveLog");
+var IncomingDiffieHellmanTr31KeyBlockFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
+  ...obj,
+  ...obj.DerivationData && { DerivationData: obj.DerivationData },
+  ...obj.WrappedKeyBlock && { WrappedKeyBlock: import_smithy_client.SENSITIVE_STRING }
+}), "IncomingDiffieHellmanTr31KeyBlockFilterSensitiveLog");
+var IncomingKeyMaterialFilterSensitiveLog = /* @__PURE__ */ __name((obj) => {
+  if (obj.DiffieHellmanTr31KeyBlock !== void 0)
+    return {
+      DiffieHellmanTr31KeyBlock: IncomingDiffieHellmanTr31KeyBlockFilterSensitiveLog(obj.DiffieHellmanTr31KeyBlock)
+    };
+  if (obj.$unknown !== void 0) return { [obj.$unknown[0]]: "UNKNOWN" };
+}, "IncomingKeyMaterialFilterSensitiveLog");
 var ReEncryptionAttributesFilterSensitiveLog = /* @__PURE__ */ __name((obj) => {
   if (obj.Symmetric !== void 0) return { Symmetric: SymmetricEncryptionAttributesFilterSensitiveLog(obj.Symmetric) };
   if (obj.Dukpt !== void 0) return { Dukpt: DukptEncryptionAttributesFilterSensitiveLog(obj.Dukpt) };
@@ -1049,6 +1093,21 @@ var ReEncryptDataOutputFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
   ...obj,
   ...obj.CipherText && { CipherText: import_smithy_client.SENSITIVE_STRING }
 }), "ReEncryptDataOutputFilterSensitiveLog");
+var TranslateKeyMaterialInputFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
+  ...obj,
+  ...obj.IncomingKeyMaterial && {
+    IncomingKeyMaterial: IncomingKeyMaterialFilterSensitiveLog(obj.IncomingKeyMaterial)
+  },
+  ...obj.OutgoingKeyMaterial && { OutgoingKeyMaterial: obj.OutgoingKeyMaterial }
+}), "TranslateKeyMaterialInputFilterSensitiveLog");
+var WrappedWorkingKeyFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
+  ...obj,
+  ...obj.WrappedKeyMaterial && { WrappedKeyMaterial: import_smithy_client.SENSITIVE_STRING }
+}), "WrappedWorkingKeyFilterSensitiveLog");
+var TranslateKeyMaterialOutputFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
+  ...obj,
+  ...obj.WrappedKey && { WrappedKey: WrappedWorkingKeyFilterSensitiveLog(obj.WrappedKey) }
+}), "TranslateKeyMaterialOutputFilterSensitiveLog");
 var TranslationPinDataIsoFormat034FilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
   ...obj,
   ...obj.PrimaryAccountNumber && { PrimaryAccountNumber: import_smithy_client.SENSITIVE_STRING }
@@ -1296,6 +1355,23 @@ var se_ReEncryptDataCommand = /* @__PURE__ */ __name(async (input, context) => {
   b.m("POST").h(headers).b(body);
   return b.build();
 }, "se_ReEncryptDataCommand");
+var se_TranslateKeyMaterialCommand = /* @__PURE__ */ __name(async (input, context) => {
+  const b = (0, import_core.requestBuilder)(input, context);
+  const headers = {
+    "content-type": "application/json"
+  };
+  b.bp("/keymaterial/translate");
+  let body;
+  body = JSON.stringify(
+    (0, import_smithy_client.take)(input, {
+      IncomingKeyMaterial: /* @__PURE__ */ __name((_) => (0, import_smithy_client._json)(_), "IncomingKeyMaterial"),
+      KeyCheckValueAlgorithm: [],
+      OutgoingKeyMaterial: /* @__PURE__ */ __name((_) => (0, import_smithy_client._json)(_), "OutgoingKeyMaterial")
+    })
+  );
+  b.m("POST").h(headers).b(body);
+  return b.build();
+}, "se_TranslateKeyMaterialCommand");
 var se_TranslatePinDataCommand = /* @__PURE__ */ __name(async (input, context) => {
   const b = (0, import_core.requestBuilder)(input, context);
   const headers = {
@@ -1520,6 +1596,20 @@ var de_ReEncryptDataCommand = /* @__PURE__ */ __name(async (output, context) =>
   Object.assign(contents, doc);
   return contents;
 }, "de_ReEncryptDataCommand");
+var de_TranslateKeyMaterialCommand = /* @__PURE__ */ __name(async (output, context) => {
+  if (output.statusCode !== 200 && output.statusCode >= 300) {
+    return de_CommandError(output, context);
+  }
+  const contents = (0, import_smithy_client.map)({
+    $metadata: deserializeMetadata(output)
+  });
+  const data = (0, import_smithy_client.expectNonNull)((0, import_smithy_client.expectObject)(await (0, import_core2.parseJsonBody)(output.body, context)), "body");
+  const doc = (0, import_smithy_client.take)(data, {
+    WrappedKey: import_smithy_client._json
+  });
+  Object.assign(contents, doc);
+  return contents;
+}, "de_TranslateKeyMaterialCommand");
 var de_TranslatePinDataCommand = /* @__PURE__ */ __name(async (output, context) => {
   if (output.statusCode !== 200 && output.statusCode >= 300) {
     return de_CommandError(output, context);
@@ -1823,6 +1913,21 @@ var ReEncryptDataCommand = class extends import_smithy_client.Command.classBuild
   }
 };
 
+// src/commands/TranslateKeyMaterialCommand.ts
+
+
+
+var TranslateKeyMaterialCommand = class extends import_smithy_client.Command.classBuilder().ep(commonParams).m(function(Command, cs, config, o) {
+  return [
+    (0, import_middleware_serde.getSerdePlugin)(config, this.serialize, this.deserialize),
+    (0, import_middleware_endpoint.getEndpointPlugin)(config, Command.getEndpointParameterInstructions())
+  ];
+}).s("PaymentCryptographyDataPlane", "TranslateKeyMaterial", {}).n("PaymentCryptographyDataClient", "TranslateKeyMaterialCommand").f(TranslateKeyMaterialInputFilterSensitiveLog, TranslateKeyMaterialOutputFilterSensitiveLog).ser(se_TranslateKeyMaterialCommand).de(de_TranslateKeyMaterialCommand).build() {
+  static {
+    __name(this, "TranslateKeyMaterialCommand");
+  }
+};
+
 // src/commands/TranslatePinDataCommand.ts
 
 
@@ -1907,6 +2012,7 @@ var commands = {
   GenerateMacEmvPinChangeCommand,
   GeneratePinDataCommand,
   ReEncryptDataCommand,
+  TranslateKeyMaterialCommand,
   TranslatePinDataCommand,
   VerifyAuthRequestCryptogramCommand,
   VerifyCardValidationDataCommand,
@@ -1934,6 +2040,7 @@ var PaymentCryptographyData = class extends PaymentCryptographyDataClient {
   GenerateMacEmvPinChangeCommand,
   GeneratePinDataCommand,
   ReEncryptDataCommand,
+  TranslateKeyMaterialCommand,
   TranslatePinDataCommand,
   VerifyAuthRequestCryptogramCommand,
   VerifyCardValidationDataCommand,
@@ -1964,6 +2071,7 @@ var PaymentCryptographyData = class extends PaymentCryptographyDataClient {
   PinBlockLengthPosition,
   PinBlockPaddingType,
   DerivationMethodAttributes,
+  DiffieHellmanDerivationData,
   MacAlgorithm,
   SessionKeyDerivationMode,
   SessionKeyDerivationValue,
@@ -1972,7 +2080,10 @@ var PaymentCryptographyData = class extends PaymentCryptographyDataClient {
   PinGenerationAttributes,
   PinBlockFormatForPinData,
   PinData,
+  IncomingKeyMaterial,
+  OutgoingKeyMaterial,
   ReEncryptionAttributes,
+  WrappedKeyMaterialFormat,
   TranslationIsoFormats,
   VerificationFailedReason,
   VerificationFailedException,
@@ -1995,7 +2106,6 @@ var PaymentCryptographyData = class extends PaymentCryptographyDataClient {
   EmvEncryptionAttributesFilterSensitiveLog,
   SymmetricEncryptionAttributesFilterSensitiveLog,
   EncryptionDecryptionAttributesFilterSensitiveLog,
-  EcdhDerivationAttributesFilterSensitiveLog,
   WrappedKeyMaterialFilterSensitiveLog,
   WrappedKeyFilterSensitiveLog,
   DecryptDataInputFilterSensitiveLog,
@@ -2026,9 +2136,14 @@ var PaymentCryptographyData = class extends PaymentCryptographyDataClient {
   PinDataFilterSensitiveLog,
   GeneratePinDataOutputFilterSensitiveLog,
   Ibm3624PinVerificationFilterSensitiveLog,
+  IncomingDiffieHellmanTr31KeyBlockFilterSensitiveLog,
+  IncomingKeyMaterialFilterSensitiveLog,
   ReEncryptionAttributesFilterSensitiveLog,
   ReEncryptDataInputFilterSensitiveLog,
   ReEncryptDataOutputFilterSensitiveLog,
+  TranslateKeyMaterialInputFilterSensitiveLog,
+  WrappedWorkingKeyFilterSensitiveLog,
+  TranslateKeyMaterialOutputFilterSensitiveLog,
   TranslationPinDataIsoFormat034FilterSensitiveLog,
   TranslationIsoFormatsFilterSensitiveLog,
   TranslatePinDataInputFilterSensitiveLog,

package/dist-es/PaymentCryptographyData.js

@@ -6,6 +6,7 @@ import { GenerateMacCommand } from "./commands/GenerateMacCommand";
 import { GenerateMacEmvPinChangeCommand, } from "./commands/GenerateMacEmvPinChangeCommand";
 import { GeneratePinDataCommand, } from "./commands/GeneratePinDataCommand";
 import { ReEncryptDataCommand, } from "./commands/ReEncryptDataCommand";
+import { TranslateKeyMaterialCommand, } from "./commands/TranslateKeyMaterialCommand";
 import { TranslatePinDataCommand, } from "./commands/TranslatePinDataCommand";
 import { VerifyAuthRequestCryptogramCommand, } from "./commands/VerifyAuthRequestCryptogramCommand";
 import { VerifyCardValidationDataCommand, } from "./commands/VerifyCardValidationDataCommand";
@@ -20,6 +21,7 @@ const commands = {
     GenerateMacEmvPinChangeCommand,
     GeneratePinDataCommand,
     ReEncryptDataCommand,
+    TranslateKeyMaterialCommand,
     TranslatePinDataCommand,
     VerifyAuthRequestCryptogramCommand,
     VerifyCardValidationDataCommand,

package/dist-es/commands/TranslateKeyMaterialCommand.js

@@ -0,0 +1,23 @@
+import { getEndpointPlugin } from "@smithy/middleware-endpoint";
+import { getSerdePlugin } from "@smithy/middleware-serde";
+import { Command as $Command } from "@smithy/smithy-client";
+import { commonParams } from "../endpoint/EndpointParameters";
+import { TranslateKeyMaterialInputFilterSensitiveLog, TranslateKeyMaterialOutputFilterSensitiveLog, } from "../models/models_0";
+import { de_TranslateKeyMaterialCommand, se_TranslateKeyMaterialCommand } from "../protocols/Aws_restJson1";
+export { $Command };
+export class TranslateKeyMaterialCommand extends $Command
+    .classBuilder()
+    .ep(commonParams)
+    .m(function (Command, cs, config, o) {
+    return [
+        getSerdePlugin(config, this.serialize, this.deserialize),
+        getEndpointPlugin(config, Command.getEndpointParameterInstructions()),
+    ];
+})
+    .s("PaymentCryptographyDataPlane", "TranslateKeyMaterial", {})
+    .n("PaymentCryptographyDataClient", "TranslateKeyMaterialCommand")
+    .f(TranslateKeyMaterialInputFilterSensitiveLog, TranslateKeyMaterialOutputFilterSensitiveLog)
+    .ser(se_TranslateKeyMaterialCommand)
+    .de(de_TranslateKeyMaterialCommand)
+    .build() {
+}

package/dist-es/commands/index.js

@@ -5,6 +5,7 @@ export * from "./GenerateMacCommand";
 export * from "./GenerateMacEmvPinChangeCommand";
 export * from "./GeneratePinDataCommand";
 export * from "./ReEncryptDataCommand";
+export * from "./TranslateKeyMaterialCommand";
 export * from "./TranslatePinDataCommand";
 export * from "./VerifyAuthRequestCryptogramCommand";
 export * from "./VerifyCardValidationDataCommand";

package/dist-es/models/models_0.js

@@ -240,6 +240,14 @@ export var DerivationMethodAttributes;
         return visitor._(value.$unknown[0], value.$unknown[1]);
     };
 })(DerivationMethodAttributes || (DerivationMethodAttributes = {}));
+export var DiffieHellmanDerivationData;
+(function (DiffieHellmanDerivationData) {
+    DiffieHellmanDerivationData.visit = (value, visitor) => {
+        if (value.SharedInformation !== undefined)
+            return visitor.SharedInformation(value.SharedInformation);
+        return visitor._(value.$unknown[0], value.$unknown[1]);
+    };
+})(DiffieHellmanDerivationData || (DiffieHellmanDerivationData = {}));
 export const MacAlgorithm = {
     CMAC: "CMAC",
     HMAC: "HMAC",
@@ -308,6 +316,7 @@ export var PinGenerationAttributes;
 })(PinGenerationAttributes || (PinGenerationAttributes = {}));
 export const PinBlockFormatForPinData = {
     ISO_FORMAT_0: "ISO_FORMAT_0",
+    ISO_FORMAT_1: "ISO_FORMAT_1",
     ISO_FORMAT_3: "ISO_FORMAT_3",
     ISO_FORMAT_4: "ISO_FORMAT_4",
 };
@@ -321,6 +330,22 @@ export var PinData;
         return visitor._(value.$unknown[0], value.$unknown[1]);
     };
 })(PinData || (PinData = {}));
+export var IncomingKeyMaterial;
+(function (IncomingKeyMaterial) {
+    IncomingKeyMaterial.visit = (value, visitor) => {
+        if (value.DiffieHellmanTr31KeyBlock !== undefined)
+            return visitor.DiffieHellmanTr31KeyBlock(value.DiffieHellmanTr31KeyBlock);
+        return visitor._(value.$unknown[0], value.$unknown[1]);
+    };
+})(IncomingKeyMaterial || (IncomingKeyMaterial = {}));
+export var OutgoingKeyMaterial;
+(function (OutgoingKeyMaterial) {
+    OutgoingKeyMaterial.visit = (value, visitor) => {
+        if (value.Tr31KeyBlock !== undefined)
+            return visitor.Tr31KeyBlock(value.Tr31KeyBlock);
+        return visitor._(value.$unknown[0], value.$unknown[1]);
+    };
+})(OutgoingKeyMaterial || (OutgoingKeyMaterial = {}));
 export var ReEncryptionAttributes;
 (function (ReEncryptionAttributes) {
     ReEncryptionAttributes.visit = (value, visitor) => {
@@ -331,6 +356,11 @@ export var ReEncryptionAttributes;
         return visitor._(value.$unknown[0], value.$unknown[1]);
     };
 })(ReEncryptionAttributes || (ReEncryptionAttributes = {}));
+export const WrappedKeyMaterialFormat = {
+    KEY_CRYPTOGRAM: "KEY_CRYPTOGRAM",
+    TR31_KEY_BLOCK: "TR31_KEY_BLOCK",
+    TR34_KEY_BLOCK: "TR34_KEY_BLOCK",
+};
 export var TranslationIsoFormats;
 (function (TranslationIsoFormats) {
     TranslationIsoFormats.visit = (value, visitor) => {
@@ -529,15 +559,11 @@ export const EncryptionDecryptionAttributesFilterSensitiveLog = (obj) => {
     if (obj.$unknown !== undefined)
         return { [obj.$unknown[0]]: "UNKNOWN" };
 };
-export const EcdhDerivationAttributesFilterSensitiveLog = (obj) => ({
-    ...obj,
-    ...(obj.PublicKeyCertificate && { PublicKeyCertificate: SENSITIVE_STRING }),
-});
 export const WrappedKeyMaterialFilterSensitiveLog = (obj) => {
     if (obj.Tr31KeyBlock !== undefined)
         return { Tr31KeyBlock: SENSITIVE_STRING };
     if (obj.DiffieHellmanSymmetricKey !== undefined)
-        return { DiffieHellmanSymmetricKey: EcdhDerivationAttributesFilterSensitiveLog(obj.DiffieHellmanSymmetricKey) };
+        return { DiffieHellmanSymmetricKey: obj.DiffieHellmanSymmetricKey };
     if (obj.$unknown !== undefined)
         return { [obj.$unknown[0]]: "UNKNOWN" };
 };
@@ -735,6 +761,19 @@ export const Ibm3624PinVerificationFilterSensitiveLog = (obj) => ({
     ...(obj.PinValidationData && { PinValidationData: SENSITIVE_STRING }),
     ...(obj.PinOffset && { PinOffset: SENSITIVE_STRING }),
 });
+export const IncomingDiffieHellmanTr31KeyBlockFilterSensitiveLog = (obj) => ({
+    ...obj,
+    ...(obj.DerivationData && { DerivationData: obj.DerivationData }),
+    ...(obj.WrappedKeyBlock && { WrappedKeyBlock: SENSITIVE_STRING }),
+});
+export const IncomingKeyMaterialFilterSensitiveLog = (obj) => {
+    if (obj.DiffieHellmanTr31KeyBlock !== undefined)
+        return {
+            DiffieHellmanTr31KeyBlock: IncomingDiffieHellmanTr31KeyBlockFilterSensitiveLog(obj.DiffieHellmanTr31KeyBlock),
+        };
+    if (obj.$unknown !== undefined)
+        return { [obj.$unknown[0]]: "UNKNOWN" };
+};
 export const ReEncryptionAttributesFilterSensitiveLog = (obj) => {
     if (obj.Symmetric !== undefined)
         return { Symmetric: SymmetricEncryptionAttributesFilterSensitiveLog(obj.Symmetric) };
@@ -759,6 +798,21 @@ export const ReEncryptDataOutputFilterSensitiveLog = (obj) => ({
     ...obj,
     ...(obj.CipherText && { CipherText: SENSITIVE_STRING }),
 });
+export const TranslateKeyMaterialInputFilterSensitiveLog = (obj) => ({
+    ...obj,
+    ...(obj.IncomingKeyMaterial && {
+        IncomingKeyMaterial: IncomingKeyMaterialFilterSensitiveLog(obj.IncomingKeyMaterial),
+    }),
+    ...(obj.OutgoingKeyMaterial && { OutgoingKeyMaterial: obj.OutgoingKeyMaterial }),
+});
+export const WrappedWorkingKeyFilterSensitiveLog = (obj) => ({
+    ...obj,
+    ...(obj.WrappedKeyMaterial && { WrappedKeyMaterial: SENSITIVE_STRING }),
+});
+export const TranslateKeyMaterialOutputFilterSensitiveLog = (obj) => ({
+    ...obj,
+    ...(obj.WrappedKey && { WrappedKey: WrappedWorkingKeyFilterSensitiveLog(obj.WrappedKey) }),
+});
 export const TranslationPinDataIsoFormat034FilterSensitiveLog = (obj) => ({
     ...obj,
     ...(obj.PrimaryAccountNumber && { PrimaryAccountNumber: SENSITIVE_STRING }),

package/dist-es/protocols/Aws_restJson1.js

@@ -124,6 +124,21 @@ export const se_ReEncryptDataCommand = async (input, context) => {
     b.m("POST").h(headers).b(body);
     return b.build();
 };
+export const se_TranslateKeyMaterialCommand = async (input, context) => {
+    const b = rb(input, context);
+    const headers = {
+        "content-type": "application/json",
+    };
+    b.bp("/keymaterial/translate");
+    let body;
+    body = JSON.stringify(take(input, {
+        IncomingKeyMaterial: (_) => _json(_),
+        KeyCheckValueAlgorithm: [],
+        OutgoingKeyMaterial: (_) => _json(_),
+    }));
+    b.m("POST").h(headers).b(body);
+    return b.build();
+};
 export const se_TranslatePinDataCommand = async (input, context) => {
     const b = rb(input, context);
     const headers = {
@@ -338,6 +353,20 @@ export const de_ReEncryptDataCommand = async (output, context) => {
     Object.assign(contents, doc);
     return contents;
 };
+export const de_TranslateKeyMaterialCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_CommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
+    const doc = take(data, {
+        WrappedKey: _json,
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
 export const de_TranslatePinDataCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
         return de_CommandError(output, context);

package/dist-types/PaymentCryptographyData.d.ts

@@ -6,6 +6,7 @@ import { GenerateMacCommandInput, GenerateMacCommandOutput } from "./commands/Ge
 import { GenerateMacEmvPinChangeCommandInput, GenerateMacEmvPinChangeCommandOutput } from "./commands/GenerateMacEmvPinChangeCommand";
 import { GeneratePinDataCommandInput, GeneratePinDataCommandOutput } from "./commands/GeneratePinDataCommand";
 import { ReEncryptDataCommandInput, ReEncryptDataCommandOutput } from "./commands/ReEncryptDataCommand";
+import { TranslateKeyMaterialCommandInput, TranslateKeyMaterialCommandOutput } from "./commands/TranslateKeyMaterialCommand";
 import { TranslatePinDataCommandInput, TranslatePinDataCommandOutput } from "./commands/TranslatePinDataCommand";
 import { VerifyAuthRequestCryptogramCommandInput, VerifyAuthRequestCryptogramCommandOutput } from "./commands/VerifyAuthRequestCryptogramCommand";
 import { VerifyCardValidationDataCommandInput, VerifyCardValidationDataCommandOutput } from "./commands/VerifyCardValidationDataCommand";
@@ -55,6 +56,12 @@ export interface PaymentCryptographyData {
     reEncryptData(args: ReEncryptDataCommandInput, options?: __HttpHandlerOptions): Promise<ReEncryptDataCommandOutput>;
     reEncryptData(args: ReEncryptDataCommandInput, cb: (err: any, data?: ReEncryptDataCommandOutput) => void): void;
     reEncryptData(args: ReEncryptDataCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ReEncryptDataCommandOutput) => void): void;
+    /**
+     * @see {@link TranslateKeyMaterialCommand}
+     */
+    translateKeyMaterial(args: TranslateKeyMaterialCommandInput, options?: __HttpHandlerOptions): Promise<TranslateKeyMaterialCommandOutput>;
+    translateKeyMaterial(args: TranslateKeyMaterialCommandInput, cb: (err: any, data?: TranslateKeyMaterialCommandOutput) => void): void;
+    translateKeyMaterial(args: TranslateKeyMaterialCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: TranslateKeyMaterialCommandOutput) => void): void;
     /**
      * @see {@link TranslatePinDataCommand}
      */

package/dist-types/PaymentCryptographyDataClient.d.ts

@@ -14,6 +14,7 @@ import { GenerateMacCommandInput, GenerateMacCommandOutput } from "./commands/Ge
 import { GenerateMacEmvPinChangeCommandInput, GenerateMacEmvPinChangeCommandOutput } from "./commands/GenerateMacEmvPinChangeCommand";
 import { GeneratePinDataCommandInput, GeneratePinDataCommandOutput } from "./commands/GeneratePinDataCommand";
 import { ReEncryptDataCommandInput, ReEncryptDataCommandOutput } from "./commands/ReEncryptDataCommand";
+import { TranslateKeyMaterialCommandInput, TranslateKeyMaterialCommandOutput } from "./commands/TranslateKeyMaterialCommand";
 import { TranslatePinDataCommandInput, TranslatePinDataCommandOutput } from "./commands/TranslatePinDataCommand";
 import { VerifyAuthRequestCryptogramCommandInput, VerifyAuthRequestCryptogramCommandOutput } from "./commands/VerifyAuthRequestCryptogramCommand";
 import { VerifyCardValidationDataCommandInput, VerifyCardValidationDataCommandOutput } from "./commands/VerifyCardValidationDataCommand";
@@ -25,11 +26,11 @@ export { __Client };
 /**
  * @public
  */
-export type ServiceInputTypes = DecryptDataCommandInput | EncryptDataCommandInput | GenerateCardValidationDataCommandInput | GenerateMacCommandInput | GenerateMacEmvPinChangeCommandInput | GeneratePinDataCommandInput | ReEncryptDataCommandInput | TranslatePinDataCommandInput | VerifyAuthRequestCryptogramCommandInput | VerifyCardValidationDataCommandInput | VerifyMacCommandInput | VerifyPinDataCommandInput;
+export type ServiceInputTypes = DecryptDataCommandInput | EncryptDataCommandInput | GenerateCardValidationDataCommandInput | GenerateMacCommandInput | GenerateMacEmvPinChangeCommandInput | GeneratePinDataCommandInput | ReEncryptDataCommandInput | TranslateKeyMaterialCommandInput | TranslatePinDataCommandInput | VerifyAuthRequestCryptogramCommandInput | VerifyCardValidationDataCommandInput | VerifyMacCommandInput | VerifyPinDataCommandInput;
 /**
  * @public
  */
-export type ServiceOutputTypes = DecryptDataCommandOutput | EncryptDataCommandOutput | GenerateCardValidationDataCommandOutput | GenerateMacCommandOutput | GenerateMacEmvPinChangeCommandOutput | GeneratePinDataCommandOutput | ReEncryptDataCommandOutput | TranslatePinDataCommandOutput | VerifyAuthRequestCryptogramCommandOutput | VerifyCardValidationDataCommandOutput | VerifyMacCommandOutput | VerifyPinDataCommandOutput;
+export type ServiceOutputTypes = DecryptDataCommandOutput | EncryptDataCommandOutput | GenerateCardValidationDataCommandOutput | GenerateMacCommandOutput | GenerateMacEmvPinChangeCommandOutput | GeneratePinDataCommandOutput | ReEncryptDataCommandOutput | TranslateKeyMaterialCommandOutput | TranslatePinDataCommandOutput | VerifyAuthRequestCryptogramCommandOutput | VerifyCardValidationDataCommandOutput | VerifyMacCommandOutput | VerifyPinDataCommandOutput;
 /**
  * @public
  */

package/dist-types/commands/GenerateMacCommand.d.ts

@@ -27,7 +27,7 @@ declare const GenerateMacCommand_base: {
     getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
 };
 /**
- * <p>Generates a Message Authentication Code (MAC) cryptogram within Amazon Web Services Payment Cryptography. </p> <p>You can use this operation to authenticate card-related data by using known data values to generate MAC for data validation between the sending and receiving parties. This operation uses message data, a secret encryption key and MAC algorithm to generate a unique MAC value for transmission. The receiving party of the MAC must use the same message data, secret encryption key and MAC algorithm to reproduce another MAC value for comparision.</p> <p>You can use this operation to generate a DUPKT, CMAC, HMAC or EMV MAC by setting generation attributes and algorithm to the associated values. The MAC generation encryption key must have valid values for <code>KeyUsage</code> such as <code>TR31_M7_HMAC_KEY</code> for HMAC generation, and they key must have <code>KeyModesOfUse</code> set to <code>Generate</code> and <code>Verify</code>.</p> <p>For information about valid keys for this operation, see <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/keys-validattributes.html">Understanding key attributes</a> and <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/crypto-ops-validkeys-ops.html">Key types for specific data operations</a> in the <i>Amazon Web Services Payment Cryptography User Guide</i>. </p> <p> <b>Cross-account use</b>: This operation can't be used across different Amazon Web Services accounts.</p> <p> <b>Related operations:</b> </p> <ul> <li> <p> <a>VerifyMac</a> </p> </li> </ul>
+ * <p>Generates a Message Authentication Code (MAC) cryptogram within Amazon Web Services Payment Cryptography. </p> <p>You can use this operation to authenticate card-related data by using known data values to generate MAC for data validation between the sending and receiving parties. This operation uses message data, a secret encryption key and MAC algorithm to generate a unique MAC value for transmission. The receiving party of the MAC must use the same message data, secret encryption key and MAC algorithm to reproduce another MAC value for comparision.</p> <p>You can use this operation to generate a DUPKT, CMAC, HMAC or EMV MAC by setting generation attributes and algorithm to the associated values. The MAC generation encryption key must have valid values for <code>KeyUsage</code> such as <code>TR31_M7_HMAC_KEY</code> for HMAC generation, and the key must have <code>KeyModesOfUse</code> set to <code>Generate</code> and <code>Verify</code>.</p> <p>For information about valid keys for this operation, see <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/keys-validattributes.html">Understanding key attributes</a> and <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/crypto-ops-validkeys-ops.html">Key types for specific data operations</a> in the <i>Amazon Web Services Payment Cryptography User Guide</i>. </p> <p> <b>Cross-account use</b>: This operation can't be used across different Amazon Web Services accounts.</p> <p> <b>Related operations:</b> </p> <ul> <li> <p> <a>VerifyMac</a> </p> </li> </ul>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/GeneratePinDataCommand.d.ts

@@ -71,8 +71,8 @@ declare const GeneratePinDataCommand_base: {
  *     },
  *   },
  *   PinDataLength: Number("int"),
- *   PrimaryAccountNumber: "STRING_VALUE", // required
- *   PinBlockFormat: "ISO_FORMAT_0" || "ISO_FORMAT_3" || "ISO_FORMAT_4", // required
+ *   PrimaryAccountNumber: "STRING_VALUE",
+ *   PinBlockFormat: "ISO_FORMAT_0" || "ISO_FORMAT_1" || "ISO_FORMAT_3" || "ISO_FORMAT_4", // required
  *   EncryptionWrappedKey: { // WrappedKey
  *     WrappedKeyMaterial: { // WrappedKeyMaterial Union: only one key present
  *       Tr31KeyBlock: "STRING_VALUE",