top of page
< Back

AWS Foundational Security Best Practice

KMS.3

AWS KMS keys should not be deleted unintentionally

Severity

Cloud Platforms

Resources

CRITICAL

AWS

AWS Key Management Service

This control checks whether AWS Key Management Service (KMS) customer managed keys (CMK) are scheduled for deletion. The control fails if a KMS CMK is scheduled for deletion.

6pl org white ai logo.png

(C) Copyright 2023 6PILLARS CLOUD AUTOMATION PTY LTD

bottom of page