Amazon Dynamodb

πŸ“˜ Lack of encryption using the Customer Master Key for Dynamodb Tables exposes data to potential security risks. Utilizing Customer Master Keys for encryption significantly enhances data security by providing control over the encryption process.

  • Section: Encryption
  • Severity: High
  • CWE: CWE-653 Insufficient Compartmentalization
  • Assurance Scope: PCI, NIST, GDPR, HIPPA
  • Threat Modeling Principal: Tampering, Information Disclosure
  • Rule Set: Threat Modeling - Cloud Configuration Check

What’s Next