SLS Logstore Encryption Key Origin Check

ID: rule:aliyun:sls-logstore-encrypt-key-origin-check
Severity: medium

Description

Ensures SLS Logstores use externally imported key material (BYOK) for encryption, which provides better control over encryption keys.

Reason for Violation

Using externally imported key material provides better control over encryption keys and enhances security posture.

Recommendation

Configure the Logstore to use BYOK encryption with externally imported key material.

Resource Types

• ALIYUN::SLS::Logstore