Google Cloud Healthcare · Schema

KmsWrappedCryptoKey

Include to use an existing data crypto key wrapped by KMS. The wrapped key must be a 128-, 192-, or 256-bit key. The key must grant the Cloud IAM permission `cloudkms.cryptoKeyVersions.useToDecrypt` to the project's Cloud Healthcare Service Agent service account. For more information, see [Creating a wrapped key] (https://cloud.google.com/dlp/docs/create-wrapped-key).

HealthcareFHIRHL7v2DICOMMedical ImagingDe-identificationInteroperabilityCloud

Properties

Name Type Description
cryptoKey string Required. The resource name of the KMS CryptoKey to use for unwrapping. For example, `projects/{project_id}/locations/{location_id}/keyRings/{keyring}/cryptoKeys/{key}`.
wrappedKey string Required. The wrapped data crypto key.
View JSON Schema on GitHub

JSON Schema

KmsWrappedCryptoKey.json Raw ↑ 
{
  "$schema": "http://json-schema.org/draft-07/schema#",
  "title": "KmsWrappedCryptoKey",
  "description": "Include to use an existing data crypto key wrapped by KMS. The wrapped key must be a 128-, 192-, or 256-bit key. The key must grant the Cloud IAM permission `cloudkms.cryptoKeyVersions.useToDecrypt` to the project's Cloud Healthcare Service Agent service account. For more information, see [Creating a wrapped key] (https://cloud.google.com/dlp/docs/create-wrapped-key).",
  "properties": {
    "cryptoKey": {
      "description": "Required. The resource name of the KMS CryptoKey to use for unwrapping. For example, `projects/{project_id}/locations/{location_id}/keyRings/{keyring}/cryptoKeys/{key}`.",
      "type": "string"
    },
    "wrappedKey": {
      "description": "Required. The wrapped data crypto key.",
      "format": "byte",
      "type": "string"
    }
  },
  "type": "object"
}