PublicKeyFormat(value)
The supported PublicKey formats.
- For PQC algorithms, an error will be returned.
- For non-PQC algorithms, the default format is PEM, and the
field <xref uid="google.cloud.kms.v1.PublicKey.pem">pem</xref> will be
populated.
Otherwise, the public key will be exported through the
<xref uid="google.cloud.kms.v1.PublicKey.public_key">public_key</xref> field
in the requested format.
PEM (1):
The returned public key will be encoded in PEM format. See
the `RFC7468 <https://tools.ietf.org/html/rfc7468>`__
sections for `General
Considerations <https://tools.ietf.org/html/rfc7468#section-2>`__
and [Textual Encoding of Subject Public Key Info]
(https://tools.ietf.org/html/rfc7468#section-13) for more
information.
DER (2):
The returned public key will be encoded in
DER format (the PrivateKeyInfo structure from
RFC 5208).
NIST_PQC (3):
This is supported only for PQC algorithms.
The key material is returned in the format
defined by NIST PQC standards (FIPS 203, FIPS
204, and FIPS 205).
XWING_RAW_BYTES (4):
The returned public key is in raw bytes
format defined in its standard
https://datatracker.ietf.org/doc/draft-connolly-cfrg-xwing-kem.
Enum |
|
---|---|
Name | Description |
PUBLIC_KEY_FORMAT_UNSPECIFIED |
If the public_key_format field is not specified: |