Key Management Errors
| Property | |
|---|---|
| Language |  |
| Severity |  |
| CWE | CWE-320: CWE CATEGORY: Key Management Errors |
| OWASP | A03:2017 - Sensitive Data Exposure |
| Confidence Level | Medium |
| Impact Level | Medium |
| Likelihood Level | Medium |
Description#
The AWS RDS resource is configured with ‘backup_retention_period = 0’, which means automated backups are disabled. Without backups, you cannot recover lost or corrupted database data.
Impact#
If data loss or corruption occurs, there will be no backups to restore from, leading to permanent loss of critical application or customer data. This can cause significant downtime, disrupt business operations, and result in compliance or reputational issues.