💼 [KMS.5] KMS keys should not be publicly accessible

ID: /frameworks/aws-fsbp-v1.0.0/kms/05

Description

Implementing least privilege access is fundamental to reducing security risk and the impact of errors or malicious intent. If the key policy for an AWS KMS key allows access from external accounts, third parties might be able to encrypt and decrypt data by using the key. This could result in an internal or external threat exfiltrating data from AWS services that use the key.

Similar

AWS Security Hub
- https://docs.aws.amazon.com/securityhub/latest/userguide/kms-controls.html#kms-5

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance

Policies (1)

Policy	Logic Count	Flags	Compliance
🛡️ AWS KMS Key Policy allows public access🟢	1	🟢 x6	no data

Description​

Similar​

Sub Sections​

Policies (1)​

Description

Similar

Sub Sections

Policies (1)