This rule ensures DynamoDB tables are encrypted with AWS KMS for enhanced security measures.
Rule | DynamoDB table should be encrypted with AWS KMS |
Framework | NIST 800-53 Revision 5 |
Severity | ✔ Medium |
Rule Description
To comply with the NIST (National Institute of Standards and Technology) 800-53 Revision 5 security requirements, DynamoDB tables should be encrypted using AWS KMS (Key Management Service). Encryption ensures that data-at-rest in DynamoDB is safeguarded from unauthorized access or potential data breaches.
Troubleshooting Steps
If the DynamoDB table is not encrypted with AWS KMS, the following troubleshooting steps can be followed:
Necessary Codes
No specific codes are required for this rule. However, appropriate IAM policies need to be created to allow encryption operations using AWS KMS.
Step-by-Step Guide for Remediation
Follow the steps below to ensure DynamoDB tables are encrypted with AWS KMS:
Additional Considerations