Skip to main content

Create and manage user keys

Create user keys

User keys are encryption keys that users create and manage themselves. To create a customer key in KMS, follow these steps:

  1. Go to KakaoCloud Console > Security > KMS.
  2. In the User Keys menu, click the [Create Customer Key] button in the upper right corner.
  3. Enter the basic information such as name and description. If you want to create the key in pre-activation state, select the option. In this case, no version will be generated.
  4. Enter configuration information such as type, usage, and algorithm. You can also enable automatic rotation. If enabled, a new version will be generated automatically based on the configured rotation cycle.
  5. Click [Create] to complete the key creation.

View user keys

  1. Go to KakaoCloud Console > Security > KMS.

  2. Select the User Keys menu to view the following items:

    ItemDescription
    NameA name assigned by the user to easily identify the key.
    IDA unique value assigned by the system to identify each key. This ID is used when making API calls.
    DescriptionAdditional notes provided by the user, such as the purpose or characteristics of the key.
    StatusIndicates whether the key is currently available.
    Displayed as 'Pre-activation', 'Active', or 'Deactivated'.
    TypeType of encryption. Symmetric keys perform both encryption and decryption with the same key, while asymmetric keys use a public-private key pair.
    UsageThe purpose of the key, such as 'Encryption and decryption' or 'Signing and verification'.
    AlgorithmThe encryption algorithm used by the key (e.g., AES-256, RSA-2048).
    Default versionThe version number of the key currently used for default encryption. New data is always encrypted with this version.
    Automatic rotationIndicates whether automatic rotation is enabled. If enabled, the configured rotation cycle is displayed; if disabled, it shows 'Not in use'.
    Last rotation timeThe date and time when the key was last rotated and a new version was generated.
    Next rotation timeThe scheduled date and time of the next automatic rotation.
    Created atThe date and time when the customer key was first created.
    Created byThe ID of the user who created the customer key.

Public key information

For asymmetric user keys, you can view the public key information.

  1. Go to KakaoCloud Console > Security > KMS.
  2. In the User Keys menu, select an asymmetric key whose public key you want to view.
  3. When you select a viewable key, the [Public Key Info] button in the upper right corner becomes available. Click [Public Key Info] or choose More > Public Key Info from the customer key row.
    • If you are on the resource’s details page, you can also access it from the action group menu in the header area.

Delete user keys

You can delete a customer key if its status is Pre-activation or if all of its versions are in a destroyed state. Refer to version management for details on destruction.

  1. Go to KakaoCloud Console > Security > KMS.
  2. In the User Keys menu, find the key you want to delete.
  3. When you select a deletable key, the [Delete] button in the upper right corner becomes available. Click [Delete] or choose More > Delete from the customer key row.
    • A deletable key is in Deactivated state and has no default version assigned, confirming that it can be removed.
    • If you are on the resource’s details page, you can also perform this action from the action group menu in the header area.
  4. In the Delete Customer Key modal, enter the name of the key to be deleted and click [Delete].