Azure > App Configuration >

App Configuration Encryption At Rest with CMK

MEDIUM

Source

CloudSploit

ID

app-configuration-encryption-at-rest-with-cmk

management console

App Configuration Encryption At Rest with CMK

Ensures that Azure App Configuration stores are encrypted with CMK.

App Configuration encrypts sensitive information at rest by default using Azure managed key. The use of customer-managed keys provides enhanced data protection by allowing you to manage your encryption keys. When managed key encryption is used, all sensitive information in App Configuration is encrypted with a user-provided Azure Key Vault key.

Recommended Actions

Ensure that Azure App Configuration store has CMK encryption enabled.

Links

https://learn.microsoft.com/en-us/azure/azure-app-configuration/concept-customer-managed-keys

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.

Copyright © 2024 Aqua Security Software Ltd. Privacy Policy | Terms of Use