diff --git a/web/packages/new/photos/services/user-entity.ts b/web/packages/new/photos/services/user-entity.ts
index 297429ce10..61ece151eb 100644
--- a/web/packages/new/photos/services/user-entity.ts
+++ b/web/packages/new/photos/services/user-entity.ts
@@ -1,4 +1,9 @@
-import { decryptBlob, decryptBoxB64 } from "@/base/crypto";
+import {
+    decryptBlob,
+    decryptBoxB64,
+    encryptBoxB64,
+    generateBoxKey,
+} from "@/base/crypto";
 import { authenticatedRequestHeaders, ensureOk, HTTPError } from "@/base/http";
 import { getKV, getKVN, setKV } from "@/base/kv";
 import { apiURL } from "@/base/origins";
@@ -229,6 +234,13 @@ const saveRemoteUserEntityKey = (
     entityKey: RemoteUserEntityKey,
 ) => setKV(entityKeyKey(type), JSON.stringify(entityKey));
 
+/**
+ * Generate a new entity key and return it after encrypting it using the user's
+ * master key.
+ */
+const generateEncryptedEntityKey = async () =>
+    encryptBoxB64(await generateBoxKey(), await masterKeyFromSession());
+
 /**
  * Decrypt an encrypted entity key using the user's master key.
  */