AWS SNS topic should be encrypted

Severity	Exploitability	Providers	Categories
HIGH	HIGH	AWS	DATA, PERMISSION

Description

Amazon Simple Notification Service (Amazon SNS) is a managed service that provides message delivery from publishers to subscribers. An Amazon SNS topic is a logical access point that acts as a communication channel.

The message body in Amazon SNS topics should always be encrypted to protect the data if accesses are compromised.

Impact

Potential data exposure	Visible in logs	User interaction required	Privileges required
True	False	False	True

Not encrypting data could lead to data leak in case of an attack.

Remediation guidelines

Enable encryption at rest for the SNS topic. Note that all requests to topics with encryption enabled must use HTTPS and Signature Version 4.

References

Creating an SNS topic
SNS topic encryption

AWS SNS topic should be encrypted

Description

Impact

Remediation guidelines

References

Was this page helpful?

Something we didn’t cover?

See our Roadmap

Subscribe on GitHub

Submit a request

API status

AWS SNS topic should be encrypted

Description​

Impact​

Remediation guidelines​

References​

Was this page helpful?

Something we didn’t cover?

See our Roadmap

Subscribe on GitHub

Submit a request

API status

Subscribe to our newsletter

Description

Impact

Remediation guidelines

References