Access Keys are used for accessing AWS environment via APIs. IAM access keys rotation periodically goes a long way in reducing the attack surface. It addresses the problem of key leakage over time.
Following compliance controls may be fulfilled with rotating access keys –
Old keys or absence of key rotation may result in compromised account or even takeover. It is strongly recommended to audit AWS account periodically and ensure proper configuration.
To remediate Deactivate the old access key and create a new one.
To keep AWS environment secure & in compliance with regulation above steps need to be repeated as often there is a change in AWS infrastructure. Ask us how can we help in keeping a constant watch, or request a free trial.