the SE needs to be trusted to … delete/overwrite the key share corresponding to the previous owner