logoalt Hacker News

datadrivenangeltoday at 5:03 AM3 repliesview on HN

Does having to refresh the key every 6 weeks instead of every year or whatever actually make a meaningful difference security-wise?

Replies

plorkyerantoday at 6:03 AM

At the minimum you’ll remember how to do it if you have to do it every six weeks.

1024kbtoday at 8:48 AM

If the key becomes compromised, rotating the key sooner means you potentially limit the damage from unauthorised access.

tptacektoday at 5:46 AM

Yes? That's a huge difference.