🔄
Secrets Rotation
Encryption
Lifecycle control to replace secrets/keys and invalidate old ones, reducing exposure window.
Definition
Rotation replaces secrets and ensures old versions are revoked. Automation and versioning reduce downtime and mistakes.
In plain English
Lifecycle control to replace secrets/keys and invalidate old ones, reducing exposure window.
Why this matters
Why it matters: Shorter secret lifetimes reduce the blast radius of secret leakage and support incident response.
Example
Example: Use a vault with versioned secrets, automate rotation, and roll out updates with zero-downtime patterns.