tencent cloud


Key Rotation

Last updated: 2024-01-11 16:28:54

    Operation Scenarios

    To improve the security of ciphertext storage, Tencent Cloud KMS provides the capability of imperceptible key rotation to refresh the stored ciphertext. Key rotation is imperceptible and has no impact on your business. After being rotated, the CMK is compatible with the ciphertext encrypted before rotation. The ReEncrypt API is offered to refresh the ciphertext. This document describes how to enable key rotation in the console.


    1. Log in to the KMS Console.
    2. Locate the key to be rotated and click Enable Rotation in the "Key Rotation" column.
    By default, key rotation is disabled. Once it is enabled, the CMK will be rotated annually.
    Contact Us

    Contact our sales team or business advisors to help your business.

    Technical Support

    Open a ticket if you're looking for further assistance. Our Ticket is 7x24 avaliable.

    7x24 Phone Support