If an encryption key is compromised, which consequence is most likely?

• A. The data becomes physically destroyed
• B. The encryption system automatically updates keys
• C. The attacker can read previously encrypted data and future communications if keys are not rotated
• D. The network automatically switches to a different protocol

Answer: (C)

Key management and confidentiality hinge on keeping encryption keys secret. When a key is compromised, anything encrypted with that key can be decrypted, so data that was already encrypted (and possibly stored) can be read now. If the same key is still used for future communications, those new messages are also at risk of being decrypted. This is why rotating keys or issuing new keys, and adopting practices like forward secrecy for new sessions, are essential defenses. If no rotation occurs, the attacker can access both past data and future communications that rely on the compromised key. The other options miss this spread of risk: a compromised key doesn’t destroy data, automatic key updates don’t happen by themselves, and switching protocols isn’t guaranteed or automatic.