Authentication

KMS master key rotation disabled

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

It was found that {AwsKmsKey} could not be rotated. Ensure KMS key rotation feature is enabled for all your Customer Master Keys.
  • Recommended Mitigation

    It is recommended to enable rotation for all of the KMS master keys. By rotating the keys periodically, the chances for an attacker to poses or use CMK without your knowledge decrease significantly.