kes key rm

Overview

Remove a key from the KES server.

Removing a Secret key prevents decrypting any cryptographic keys derived using that Secret key, which in turn prevents decrypting any objects encrypted with those cryptographic keys.

Removing a Secret Key renders all data encrypted using that key permanently unreadable.

Syntax

kes key rm                \
        <name>            \
        [--enclave, -e]   \
        [--insecure, -k]

Parameters

name

Required

The name of the existing key to remove. To remove more than one key, separate each key with a space.

--enclave, -e

Optional

The short name of the KES enclave to output information about.

--insecure, -k

Examples

Remove a key:

kes key rm my-key

Remove two keys at the same time:

kes key rm my-key1 my-key2