...
Title - name of the key, with no functional effect, just for clarity.
Type - only “local key” type is supported for now, which is stored in the application database. In the future more key types are planned, which will be stored elsewhere (eg. external KMS or HSM).
Since version 2.3 there are two types of local keys: ECIES - old and deprecated and HPKE - new and recommended. For new installations the new recommended key type will be automatically used. Old installations will continue using the original ECIES, until the administrator makes the change. We recommend considering to switch to the new key type for older installations (by adding a new key and then removing the old one).
Key usage - how many packages is currently encrypted with this key / total number of encrypted packages.
Status:
ready: a key with no active running operation.
adding to packages in progress: a key with an active operation of being added to encrypted packages.
removing from packages in progress: a key with an active operation of being removed from encrypted packages.
Action:
+ icon: Adds this KEK to all encrypted packages. Available only if some encrypted packages exist without this key.
- icon: Removes this KEK from all encrypted packages. Available only if some encrypted packages exist with this key.
Trashcan icon: Removes this KEK from the application. Available only if this key is not currently used for encryption of any package. A key that is used cannot be deleted, because it would cause package data loss.
More about encryption
Additional information about the encryption can be found here: https://wikisonpo.atlassian.net/wiki/spaces/SPEN/pages/3192684545/Data+encryption+in+the+SOFiE+application .