A CryptoKeyVersion represents an individual cryptographic key, and the associated key material. An [ENABLED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionState.E NABLED] version can be used for cryptographic operations. For security reasons, the raw cryptographic key material represented by a CryptoKeyVersion can never be viewed or exported. It can only be used to encrypt, decrypt, or sign data when an authorized user or application invokes Cloud KMS. .. attribute:: name
Output only. The resource name for this
CryptoKeyVersion in
the format projects/*/locations/*/keyRings/*/cryptoKeys/*/cr
yptoKeyVersions/*
.
Output only. The ProtectionLevel describing how crypto operations are performed with this CryptoKeyVersion.
Output only. Statement that was generated and signed by the HSM at key creation time. Use this statement to verify attributes of the key as stored on the HSM, independently of Google. Only provided for key versions with [protection_level ][google.cloud.kms.v1.CryptoKeyVersion.protection_level] HSM.
Output only. The time this CryptoKeyVersion's key material was generated.
Output only. The time this CryptoKeyVersion's key material was destroyed. Only present if state is [DESTRO YED][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionStat e.DESTROYED].
Output only. The time at which this CryptoKeyVersion's key material was imported.
ExternalProtectionLevelOptions stores a group of additional fields for configuring a CryptoKeyVersion that are specific to the EXTERNAL protection level.