Practice free →
HomeBCA Cloud Computingcloudcomputingcloudsecurity › Why is rotating credentials (passwords, access k…

Why is rotating credentials (passwords, access keys, certificates) on a schedule a best practice in cloud environments?

ALimits the window during which a leaked credential is useful to an attacker
BEliminates the need for IAM entirely
CMakes the credentials longer and therefore unhackable forever
DReduces the storage cost of identity databases
Answer & Solution
Correct answer: A. Limits the window during which a leaked credential is useful to an attacker
Rotation shortens the blast-radius of any leaked secret — even if exfiltrated, it stops working after the next rotation. Length isn't rotation; storage cost is irrelevant; IAM still exists.
Solve this in the app — BCA Cloud Computing practice & 24k+ MCQs →
Related questions