added 307 characters in body; edited title

Source Link

edited Dec 28, 2025 at 22:11

928
1
4
22

Trouble handlingdecrypting CiphertextForRecipient after KMS GenerateDataKey

How exactly am I supposed to decrypt CiphertextForRecipient?

I found this answer for a similar problem: How to decrypt the CiphertextForRecipient using the private key in the enclave?

But I really don't know how to do the same thing in Go.

Trouble handling CiphertextForRecipient after KMS GenerateDataKey

Trouble decrypting CiphertextForRecipient after KMS GenerateDataKey

How exactly am I supposed to decrypt CiphertextForRecipient?

I found this answer for a similar problem: How to decrypt the CiphertextForRecipient using the private key in the enclave?

But I really don't know how to do the same thing in Go.

edited tags

Link

edited Dec 28, 2025 at 20:52

Alexxino

928
1
4
22

go cryptography amazon-kms enclave trusted-computing trusted-execution-environment

Explained what the “happy” flow should look like

Source Link

edited Dec 28, 2025 at 20:40

Alexxino

928
1
4
22

I'm building a route for my go (gin) server that generates a Data Encryption Key (DEK), following the principle of zero-trust (the backend never sees the plaintext).

Explained what the “happy” flow should look like

Source Link

edited Dec 28, 2025 at 20:35

Alexxino

928
1
4
22

Loading

Source Link

asked Dec 28, 2025 at 20:26

Alexxino

928
1
4
22

Loading

Collectives™ on Stack Overflow

Return to Question

Trouble handlingdecrypting CiphertextForRecipient after KMS GenerateDataKey

Trouble handling CiphertextForRecipient after KMS GenerateDataKey

Trouble decrypting CiphertextForRecipient after KMS GenerateDataKey