Question

Can a temporary security credential be revoked prior to its expiration?

Answer 1

When requesting temporary credentials, we recommend the following:

1. When creating temporary security credentials, set the expiration to a value that is appropriate for your application.
2. Because root account permissions cannot be restricted, use an IAM user and not the root account for creating temporary security credentials. You can revoke permissions of the IAM user that issued the original call to request it. This action almost immediately revokes privileges for all temporary security credentials issued by that IAM user