Ensure Alibaba Cloud OSS bucket is encrypted with Customer Master Key

Error: Alibaba Cloud OSS bucket is not encrypted with Customer Master Key

Bridgecrew Policy ID: BC_ALI_GENERAL_2
Checkov Check ID: CKV_ALI_6
Severity: MEDIUM

Alibaba Cloud OSS bucket is not encrypted with Customer Master Key

Description

Fix - Buildtime - Terraform

resource "alicloud_oss_bucket" "pass" {
  bucket = "bucket-123"
  acl    = "private"

  server_side_encryption_rule {
    sse_algorithm     = "KMS"
    kms_master_key_id = "your kms key id"
  }
}

Did this page help you?