Create and manage user keys
Create user keys
User keys are encryption keys that users create and manage themselves. To create a customer key in KMS, follow these steps:
- Go to KakaoCloud Console > Security > KMS.
- In the User Keys menu, click the [Create Customer Key] button in the upper right corner.
- Enter the basic information such as name and description. If you want to create the key in pre-activation state, select the option. In this case, no version will be generated.
- Enter configuration information such as type, usage, and algorithm. You can also enable automatic rotation. If enabled, a new version will be generated automatically based on the configured rotation cycle.
- Click [Create] to complete the key creation.
View user keys
-
Go to KakaoCloud Console > Security > KMS.
-
Select the User Keys menu to view the following items:
Item Description Name A name assigned by the user to easily identify the key. ID A unique value assigned by the system to identify each key. This ID is used when making API calls. Description Additional notes provided by the user, such as the purpose or characteristics of the key. Status Indicates whether the key is currently available.
Displayed as 'Pre-activation', 'Active', or 'Deactivated'.Type Type of encryption. Symmetric keys perform both encryption and decryption with the same key, while asymmetric keys use a public-private key pair. Usage The purpose of the key, such as 'Encryption and decryption' or 'Signing and verification'. Algorithm The encryption algorithm used by the key (e.g., AES-256, RSA-2048). Default version The version number of the key currently used for default encryption. New data is always encrypted with this version. Automatic rotation Indicates whether automatic rotation is enabled. If enabled, the configured rotation cycle is displayed; if disabled, it shows 'Not in use'. Last rotation time The date and time when the key was last rotated and a new version was generated. Next rotation time The scheduled date and time of the next automatic rotation. Created at The date and time when the customer key was first created. Created by The ID of the user who created the customer key.
Public key information
For asymmetric user keys, you can view the public key information.
- Go to KakaoCloud Console > Security > KMS.
- In the User Keys menu, select an asymmetric key whose public key you want to view.
- When you select a viewable key, the [Public Key Info] button in the upper right corner becomes available. Click [Public Key Info] or choose More > Public Key Info from the customer key row.
- If you are on the resource’s details page, you can also access it from the action group menu in the header area.
Delete user keys
You can delete a customer key if its status is Pre-activation or if all of its versions are in a destroyed state. Refer to version management for details on destruction.
- Go to KakaoCloud Console > Security > KMS.
- In the User Keys menu, find the key you want to delete.
- When you select a deletable key, the [Delete] button in the upper right corner becomes available. Click [Delete] or choose More > Delete from the customer key row.
- A deletable key is in Deactivated state and has no default version assigned, confirming that it can be removed.
- If you are on the resource’s details page, you can also perform this action from the action group menu in the header area.
- In the Delete Customer Key modal, enter the name of the key to be deleted and click [Delete].