Key Management Errors
| Property | |
|---|---|
| Language |  |
| Severity |  |
| CWE | CWE-320: CWE CATEGORY: Key Management Errors |
| OWASP | A03:2017 - Sensitive Data Exposure |
| Confidence Level | Low |
| Impact Level | Low |
| Likelihood Level | Low |
Description#
The Azure Data Explorer (Kusto) cluster is not configured with double encryption enabled, which means data at rest is only protected by a single layer of encryption. This increases the risk of unauthorized access if the primary encryption layer is compromised.
Impact#
Without double encryption, sensitive data stored in the cluster is more vulnerable to exposure if encryption keys are leaked or compromised. An attacker could potentially access or tamper with data, leading to data breaches and compliance violations.