Data protection

Storage Bucket is not encrypted with a Customer Managed Key (CMK)

Risk Level

Informational (4)

Platform(s)
  • N/A

Compliance Frameworks

Description

By default, Object Storage buckets are encrypted with an Oracle managed key. Storage buckets can also be encrypted using a customer-managed key to create an additional level of security. It was detected that the Storage Bucket {OciStorageBucket.Name} is not encrypted with a customer-managed key (CMK). Encryption of Object Storage buckets with a Customer Managed Key provides an additional level of security on your data by allowing you to manage your own encryption key lifecycle management for the bucket.
  • Recommended Mitigation

    It is recommended to encrypt Object Storage Buckets with a customer-managed key (CMK) in order to provide an additional level of security for your data.