SqlColumnEncryptionKeyStoreProvider Class

Definition

public ref class SqlColumnEncryptionKeyStoreProvider abstract
public abstract class SqlColumnEncryptionKeyStoreProvider
type SqlColumnEncryptionKeyStoreProvider = class
Public MustInherit Class SqlColumnEncryptionKeyStoreProvider
Inheritance
SqlColumnEncryptionKeyStoreProvider
Derived

Constructors

SqlColumnEncryptionKeyStoreProvider()

Properties

ColumnEncryptionKeyCacheTtl

Gets or sets the lifespan of the decrypted column encryption key in the cache. Once the timespan has elapsed, the decrypted column encryption key is discarded and must be revalidated.

Methods

DecryptColumnEncryptionKey(String, String, Byte[])

Decrypts the specified encrypted value of a column encryption key. The encrypted value is expected to be encrypted using the column master key with the specified key path and using the specified algorithm.

EncryptColumnEncryptionKey(String, String, Byte[])

Encrypts a column encryption key using the column master key with the specified key path and using the specified algorithm.

SignColumnMasterKeyMetadata(String, Boolean)

When implemented in a derived class, digitally signs the column master key metadata with the column master key referenced by the masterKeyPath parameter. The input values used to generate the signature should be the specified values of the masterKeyPath and allowEnclaveComputations parameters.

VerifyColumnMasterKeyMetadata(String, Boolean, Byte[])

When implemented in a derived class, this method is expected to verify the specified signature is valid for the column master key with the specified key path and the specified enclave behavior. The default implementation throws NotImplementedException.

Applies to