Query: Key Vault keys should have an expiration date

Description

Cryptographic keys should have a defined expiration date and not be permanent. Keys that are valid forever provide a potential attacker with more time to compromise the key. It is a recommended security practice to set expiration dates on cryptographic keys.

Query

Tables used in this query:

• azure_key_vault_key
• azure_subscription

Controls using this query:

• 8.1 Ensure that the expiration date is set on all keys
• Key Vault keys should have an expiration date

SQL