kms_cmk_policy_prohibit_public_access

KMS CMK policies should prohibit public access

kms_cmk_rotation_enabled

KMS CMK rotation should be enabled

kms_cmk_unused

KMS key should be in use

kms_key_decryption_restricted_in_iam_customer_managed_policy

KMS key decryption should be restricted in IAM customer managed policy

kms_key_decryption_restricted_in_iam_inline_policy

KMS key decryption should be restricted in IAM inline policy

kms_key_not_pending_deletion

KMS keys should not be pending deletion

This section contains recommendations for configuring KMS resources.

all_controls_kms

all_controls

All Controls

aws_compliance

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, FFIEC, PCI, NIST, HIPAA, RBI CSF, GDPR, SOC 2, Audit Manager Control Tower, FedRAMP, GxP and AWS Foundational Security Best Practices controls across all your AWS accounts using Steampipe.

AWS Compliance

Apache License 2.0

steampipe-mod-aws-compliance

turbot/aws_compliance

Benchmark: KMS

Description

Usage

Controls

Tags

Steampipe

Resources

Community