{"id":"iam-credential-lifecycle-requires-entirely-proactive-management","text":"IAM access keys never expire automatically AND the secret access key can only be retrieved at creation time — credential lifecycle management must be entirely proactive with no forcing functions for rotation, and a lost secret key requires full credential replacement rather than recovery","truth_value":"IN","source":"","source_url":"","source_hash":"","justifications":[],"dependents":[],"metadata":{},"explanation":{"steps":[{"node":"iam-credential-lifecycle-requires-entirely-proactive-management","truth_value":"IN","reason":"premise"}]}}