要使用AWS Encryption SDK for Go，需要安装Go语言环境并设置好相关的环境变量。然后，可以按照以下步骤使用AWS Encryption SDK for Go进行加密和解密。

1. 安装AWS Encryption SDK for Go：

go get github.com/aws/aws-sdk-go/service/kms
go get github.com/aws/aws-sdk-go/aws
go get github.com/aws/aws-sdk-go/aws/awserr
go get github.com/aws/aws-sdk-go/aws/session
go get github.com/aws/aws-sdk-go/service/dynamodb
go get github.com/aws/aws-encryption-sdk-go

2. 创建一个Go文件，例如main.go，并导入所需的包：

package main

import (
	"fmt"

	"github.com/aws/aws-sdk-go/aws"
	"github.com/aws/aws-sdk-go/aws/session"
	"github.com/aws/aws-sdk-go/service/kms"
	"github.com/aws/aws-sdk-go/service/dynamodb"
	"github.com/aws/aws-encryption-sdk-go/encrypt"
	"github.com/aws/aws-encryption-sdk-go/kmsctx"
	"github.com/aws/aws-encryption-sdk-go/decrypt"
)

3. 创建一个AWS会话：

sess, err := session.NewSession(&aws.Config{
	Region: aws.String("us-west-2"), // 设置您的AWS区域
})
if err != nil {
	fmt.Println("Failed to create session", err)
	return
}

4. 创建一个KMS客户端：

kmsClient := kms.New(sess)

5. 加密数据：

plaintext := []byte("Hello, World!")

keyID := "your-kms-key-id" // 替换为您的KMS密钥ID

encryptSvc := encrypt.NewEncrypter(kmsClient, keyID)
ciphertext, err := encryptSvc.Encrypt(plaintext, &encrypt.EncryptionContext{})

if err != nil {
	fmt.Println("Encryption failed", err)
	return
}

fmt.Println("Ciphertext:", ciphertext)

6. 解密数据：

decryptSvc := decrypt.NewDecrypter(kmsClient)

decryptedData, err := decryptSvc.Decrypt(ciphertext)
if err != nil {
	fmt.Println("Decryption failed", err)
	return
}

fmt.Println("Decrypted data:", decryptedData)

这些就是使用AWS Encryption SDK for Go进行加密和解密的基本步骤。根据您的需求，您可以进一步定制加密上下文、密钥规范等。请注意，上述示例仅用于演示目的，实际使用时请根据您的具体情况进行配置和修改。