๐ผ [SNS.4] SNS topic access policies should not allow public access
- Contextual name: ๐ผ [SNS.4] SNS topic access policies should not allow public access
- ID:
/frameworks/aws-fsbp-v1.0.0/sns/04 - Located in: ๐ผ Simple Notification Service (SNS)
Descriptionโ
You use an SNS access policy with a particular topic to restrict who can work
with that topic (for example, who can publish messages to it or who can
subscribe to it). SNS policies can grant access to other AWS accounts, or to
users within your own AWS account. Providing a wildcard (*) in the Principle
field of the topic policy and a lack of conditions to limit the topic policy
can result in data exfiltration, denial of service, or undesired injection of
messages into your service by an attacker.
Similarโ
Sub Sectionsโ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|