AWS > KMS >

KMS Grant Least Privilege

MEDIUM

Source

CloudSploit

kms-grant-least-privilege

management console

KMS Grant Least Privilege

Ensure that AWS KMS key grants use the principle of least privileged access.

AWS KMS key grants should be created with minimum set of permissions required by grantee principal to adhere to AWS security best practices.

Recommended Actions

Create KMS grants with minimum permission required

Links

https://docs.aws.amazon.com/kms/latest/developerguide/grants.html

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.