USE [ ENCRYPTION ] KEY 'key_id' [ USING TAG 'tag' ]
  IDENTIFIED BY keystore_password
  [ WITH BACKUP [ USING 'backup_identifier' ] ]