Auth rotation without bricking sleepy devices

Sleepy devices wake on their own schedule. Rotation plans include overlap long enough for two firmware cycles, not just one idealized sprint. We pair with client teams to write the customer-visible notice copy early. Surprises erode trust faster than a delayed rotation. The closing section lists what we will not automate: human approvals for destructive revocations stay explicit.