Key Management Errors
| Property | |
|---|---|
| Language |  |
| Severity |  |
| CWE | CWE-320: CWE CATEGORY: Key Management Errors |
| OWASP | A03:2017 - Sensitive Data Exposure |
| Confidence Level | Low |
| Impact Level | Low |
| Likelihood Level | Low |
Description#
The FSX Windows file system is not configured to use a customer-managed KMS key for encryption at rest. This means you do not have full control over the encryption keys used to protect your data.
Impact#
Without customer-managed keys, sensitive data stored in the FSX file system could be less secure, as you cannot manage key access or rotation. This increases the risk of unauthorized data access if AWS-managed keys are compromised or misused.