Amazon_DynamoDB_4

Ensure that AWS DynamoDB is encrypted using AWS managed CMKs (Customer Master Key) instead of AWS-owned CMK's

Description

Dynamo Db must be encrypted with AWS kms

Remediation

1. Sign in to AWS console
2. In the console, select the specific region
3. Navigate to ‘DynamoDB’ dashboard
4. Select the reported table from the list of DynamoDB tables
5. In ‘Overview’ tab, Navigate to the ‘Table Details’ section
6. Click the ‘Manage Encryption’ link available for ‘Encryption Type’
7. On ‘Manage Encryption’ pop up window, select ‘KMS’ as the encryption type

Service

DynamoDB

Severity

Medium

Compliance

Mapping

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!