Key Revokation Keys are revoked using a key revokation certificate This tells anyone that the key revoked is no longer valid Make a certificate when key is generated and store in a safe place $ gpg --gen-revoke