This is the inverse of PassKey.encrypt, also using only keys produced by PassKey.PassKey.derive or PassKey.PassKey.derive_with_salt.
A byte array of length ciphertext.length.
ciphertext.length
plaintext on success.