Skip to main content

KMS Key Automatic Rotation Enabled

ID: rule:aliyun:kms-key-rotation-enabled
Severity: medium
IaC Types: ROS, Terraform

Description

Ensures that KMS keys have automatic rotation enabled to enhance security by periodically rotating key material.

Reason for Violation

The KMS key does not have automatic rotation enabled, which may increase the risk of key compromise over time.

Recommendation

Enable automatic rotation for the KMS key by setting automatic_rotation to "Enabled".

Resource Types

ROS: ALIYUN::KMS::Key
Terraform: alicloud_kms_key

Description
Reason for Violation
Recommendation
Resource Types