Skip to main content

OSS bucket server-side KMS encryption enabled

ID: rule:aliyun:oss-default-encryption-kms
Severity: medium

Description

OSS bucket has server-side KMS encryption enabled, considered compliant.

Reason for Violation

OSS bucket does not have server-side KMS encryption enabled

Recommendation

Enable server-side KMS encryption for OSS bucket to protect data at rest

Resource Types

  • ALIYUN::OSS::Bucket