Description

The automatic key rotation for the KMS service is disabled. By keeping static keys during long periods the chances to compromise a valid key are higher.

Impact

Increase the chance to get valid keys.

Recommendation

Enable the automatic key rotation for all the service keys.

Threat

Anonymous attacker from the Internet.

Expected Remediation Time

⏱️ 60 minutes.

Requirements

Fixes