Data protection

Pub/Sub Topic without Customer-Managed Key Encryption

Risk Level

Informational (4)

Platform(s)

Description

It was detected that the topic {GcpPubSubTopic} is not using CMK (Customer-Managed Key). Google Cloud Pub/Sub topics should be encrypted with Customer-Managed Keys (CMKs) in order to have full control over data encryption and decryption process. For further reading visit https://cloud.google.com/pubsub/docs/encryption#using-cmek.
  • Recommended Mitigation

    It is recommended to configure Pub/Sub topics to be encrypted with Customer-Managed Keys (CMKs)