Create a public key the can be used to encrypt the recording(the encryption must be set in recording config). Use this API if you want to encrypt the files using your public key instead of a standard AWS key (AES256). Once created the key is identified by a key_id that can be used to refers to it.
The public key must be a valid RSA (any size) in PEM format, you can use \n to separate each line or concatenate it in one row.
Example of RSA creation using openssl:
Generate a keypair:
openssl genrsa -out private.pem 2048
Extract the public key from the keypair:
openssl rsa -in private.pem -outform PEM -pubout -out public.pem
Now we have the private key (which is NOT to be shared) and the public key that can be used as parameters
The zip archive of the encrypted recording will contain:
-
key.txt.enc: Contain a symmetric key encrypted with the given public key -
iv.txt: initialisation vector, necessary fot the decrypt phase -
README.txt: contains all the information for decrypt the files