When creating a penetration testing report, what is the recommended remediation related to the management of encryption keys that have a set period after which they must be replaced with new keys?
Key rotation
Password complexity update
Biometric re-enrollment
Certificate renewal