AWS SQS
Overview
Critical
1High
2Medium
1Low
0Informational
0Security issues (4)
Severity | Non-Compliance | Region | Resource | Issue | Remediation | Read more | Action |
---|---|---|---|---|---|---|---|
High | PCI DSS 3.5 HIPAA (Encryption) | us-east-1 | test-execution-queue-collector | SQS queue is not encrypted. | To fulfill HIPAA and PCI DSS compliance requirements for encryption of data at rest, enable encryption with KMS for all SQS queues. | More info | |
Medium | — | us-east-1 | my-queue | SQS queue uses an AWS managed-key encryption key "alias/aws/sqs". | For more control over the data-at-rest encryption, make sure the SQS queue uses KMS customer-managed keys instead of AWS managed-keys. | More info | |
Critical | — | us-east-1 | my-queue | SQS queue allows anonymous access to the action: "SQS:*". | Make sure the access policy of your SQS queue protects it against unauthorized users. | More info | |
High | PCI DSS 3.5 HIPAA (Encryption) | us-east-1 | test-queue.fifo | SQS queue is not encrypted. | To fulfill HIPAA and PCI DSS compliance requirements for encryption of data at rest, enable encryption with KMS for all SQS queues. | More info |