Data protection

File Storage System is not encrypted with a customer-managed key (CMK)

Platform(s)

  • Oracle Cloud Infrastructure

Compliance Frameworks

coppa, Data Security Posture Management (DSPM) Best Practices, Mitre ATT&CK, NIST 800-171, OCI CIS, pipeda

Description

Oracle Cloud Infrastructure File Storage Service (FSS) provides a durable, scalable, secure, enterprise-grade network File System. By default, the Oracle service manages the keys that encrypt FSS File Systems. FSS File Systems can also be encrypted using a customer-managed key (CMK) to create an additional level of security. It was detected that the File System {OciFileSystem.Name} is not encrypted with a customer-managed key. Management of encryption keys is critical to protecting and accessing protected data.
Need help?

Get a free Security Risk Assessment. Start today

A screenshot of the Orca platform dashboard summarizing all of your cloud security risks

Personalized Demo

See Orca Security in Action

Gain visibility, achieve compliance, and prioritize risks with the Orca Cloud Security Platform.

Get a Demo