Best practices

DocumentDB cluster is not using customer-managed KMS keys

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

DocumentDB cluster {AwsDocdbCluster} is encrypted using the default AWS-managed KMS key
  • Recommended Mitigation

    We recommend to encrypt DocumentDB clusters with customer-managed KMS key, to enable more control over the keys