π‘οΈ AWS Kinesis Stream Retention Period Hours is less than 7 daysπ’
- Contextual name: π‘οΈ Stream Retention Period Hours is less than 7 daysπ’
- ID:
/ce/ca/aws/kinesis/stream-retention-period - Tags:
- π’ Policy with categories
- π’ Policy with type
- π’ Production policy
- Policy Type:
COMPLIANCE_POLICY - Policy Categories:
RELIABILITY
Logicβ
- π§ prod.logic.yamlπ’
Similar Policiesβ
Descriptionβ
Descriptionβ
This policy identifies AWS Kinesis Streams configured with a retention period of less than 168 hours (7 days).
Rationaleβ
By default, records in a Kinesis data stream are retained for only 24 hours. Extending the retention period to 7 days provides a meaningful reliability buffer. If a downstream consumer, such as an AWS Lambda function or an application running on Amazon EC2, fails or experiences processing delays, a longer retention window ensures that data remains available while the issue is investigated and resolved.
Additionally, during periods of increased data ingestion, consumers may fall behind. A 7-day retention period allows sufficient time to scale consumer capacity and reprocess data without permanent data loss.
Many organizations also require the ability to re-run analytics or perform audits on recent data. Short retention periods increase reliance on external backup mechanisms even for recent events, adding operational complexity.
Impactβ
Increasing the retention period beyond the default 24 hours results in additional AWS costs, which are based on the volume of data retained and the configured retention duration.
... see more
Remediationβ
Remediationβ
Update Retention Periodβ
From Command Lineβ
To increase the retention period of an Amazon Kinesis Stream to 7 days (168 hours), run the following command:
aws kinesis increase-stream-retention-period \
--stream-name {{stream-name}} \
--retention-period-hours 168
policy.yamlβ
Linked Framework Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| πΌ AWS Foundational Security Best Practices v1.0.0 β πΌ [Kinesis.3] Kinesis streams should have an adequate data retention period | 1 | no data | |||
| πΌ Cloudaware Framework β πΌ System Configuration | 55 | no data |