AWS::MediaConnect::FlowOutput Encryption - AWS CloudFormation (original) (raw)

Information about the encryption of the flow.

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON

{
  "Algorithm" : String,
  "KeyType" : String,
  "RoleArn" : String,
  "SecretArn" : String
}

YAML

  Algorithm: String
  KeyType: String
  RoleArn: String
  SecretArn: String

Algorithm

The type of algorithm that is used for static key encryption (such as aes128, aes192, or aes256). If you are using SPEKE or SRT-password encryption, this property must be left blank.

Required: No

Type: String

Allowed values: aes128 | aes192 | aes256

Update requires: No interruption

KeyType

The type of key that is used for the encryption. If you don't specify akeyType value, the service uses the default setting (static-key). Valid key types are: static-key, speke, and srt-password.

Required: No

Type: String

Allowed values: static-key | srt-password

Update requires: No interruption

RoleArn

The ARN of the role that you created during setup (when you set up MediaConnect as a trusted entity).

Required: Yes

Type: String

Update requires: No interruption

SecretArn

The ARN of the secret that you created in AWS Secrets Manager to store the encryption key. This parameter is required for static key encryption and is not valid for SPEKE encryption.

Required: Yes

Type: String

Update requires: No interruption

EncodingParameters

Interface

Did this page help you? - Yes

Thanks for letting us know we're doing a good job!

If you've got a moment, please tell us what we did right so we can do more of it.

Did this page help you? - No

Thanks for letting us know this page needs work. We're sorry we let you down.

If you've got a moment, please tell us how we can make the documentation better.