class Google::Apis::DlpV2::GooglePrivacyDlpV2CryptoReplaceFfxFpeConfig

Replaces an identifier with a surrogate using Format Preserving Encryption ( FPE) with the FFX mode of operation; however when used in the ` ReidentifyContent` API method, it serves the opposite function by reversing the surrogate back into the original identifier. The identifier must be encoded as ASCII. For a given crypto key and context, the same identifier will be replaced with the same surrogate. Identifiers must be at least two characters long. In the case that the identifier is the empty string, it will be skipped. See cloud.google.com/dlp/docs/pseudonymization to learn more. Note: We recommend using CryptoDeterministicConfig for all use cases which do not require preserving the input alphabet space and size, plus warrant referential integrity.

Attributes

common_alphabet[RW]

Common alphabets. Corresponds to the JSON property `commonAlphabet` @return [String]

context[RW]

General identifier of a data field in a storage service. Corresponds to the JSON property `context` @return [Google::Apis::DlpV2::GooglePrivacyDlpV2FieldId]

crypto_key[RW]

This is a data encryption key (DEK) (as opposed to a key encryption key (KEK) stored by Cloud Key Management Service (Cloud KMS). When using Cloud KMS to wrap or unwrap a DEK, be sure to set an appropriate IAM policy on the KEK to ensure an attacker cannot unwrap the DEK. Corresponds to the JSON property `cryptoKey` @return [Google::Apis::DlpV2::GooglePrivacyDlpV2CryptoKey]

custom_alphabet[RW]

This is supported by mapping these to the alphanumeric characters that the FFX mode natively supports. This happens before/after encryption/decryption. Each character listed must appear only once. Number of characters must be in the range [2, 95]. This must be encoded as ASCII. The order of characters does not matter. The full list of allowed characters is: 0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz ~`!@#$%^&*()_-+= `[`]|:;“'<,>.?/ Corresponds to the JSON property `customAlphabet` @return [String]

radix[RW]

The native way to select the alphabet. Must be in the range [2, 95]. Corresponds to the JSON property `radix` @return [Fixnum]

surrogate_info_type[RW]

Type of information detected by the API. Corresponds to the JSON property `surrogateInfoType` @return [Google::Apis::DlpV2::GooglePrivacyDlpV2InfoType]

Public Class Methods

new(**args) click to toggle source
# File lib/google/apis/dlp_v2/classes.rb, line 1444
def initialize(**args)
   update!(**args)
end

Public Instance Methods

update!(**args) click to toggle source

Update properties of this object

# File lib/google/apis/dlp_v2/classes.rb, line 1449
def update!(**args)
  @common_alphabet = args[:common_alphabet] if args.key?(:common_alphabet)
  @context = args[:context] if args.key?(:context)
  @crypto_key = args[:crypto_key] if args.key?(:crypto_key)
  @custom_alphabet = args[:custom_alphabet] if args.key?(:custom_alphabet)
  @radix = args[:radix] if args.key?(:radix)
  @surrogate_info_type = args[:surrogate_info_type] if args.key?(:surrogate_info_type)
end