Key Management Errors
| Property | |
|---|---|
| Language |  |
| Severity |  |
| CWE | CWE-320: CWE CATEGORY: Key Management Errors |
| OWASP | A03:2017 - Sensitive Data Exposure |
| Confidence Level | Low |
| Impact Level | Low |
| Likelihood Level | Low |
Description#
The Data Lake Store resource in your Terraform configuration does not have encryption enabled. This means that data stored in Azure Data Lake is not being encrypted at rest, leaving sensitive information unprotected.
Impact#
Without encryption, attackers or unauthorized users who gain access to the storage account could read sensitive data directly. This increases the risk of data breaches, regulatory non-compliance, and exposure of confidential information.