This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.
Log in to ask a question

Google-Managed Key rotation schedule

Posted on 06-25-2024 01:13 AM
KastriotAhmeti
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

Hello, I would like to know if there in fact is a schedule in place, that rotates KEKs (Key Encryption Keys) periodically, and how long is the timeframe? On the GCP Documentation it says that keys are rotated on a schedule, but it is nowhere mentioned in details. Also on one of Google community threads, a Google Support employee mentions that the default rotation period inside the Keystore is 90 days, I want to confirm this.

1 1 733
Topic Labels
1 REPLY 1

Posted on --/--/---- --:-- AM
DamianS
Gold 2
Gold 2
Reply posted on --/--/---- --:-- AM

Hello @KastriotAhmeti  ,Welcome on Google Cloud Community.

I've found under documentation following sentence:  "Some security regulations require periodic, automatic key rotation. Automatic key rotation at a defined period, such as every 90 days, increases security with minimal administrative complexity." Additionally, when I've tried to create key, default is 90 days.

DamianS_0-1719811805529.png

DamianS_1-1719811888871.png

You can manually rotate keys, whenever you want. 

--
cheers,
DamianS
LinkedIn medium.com Cloudskillsboost

 

Top Labels in this Space