Best practice rules for AWS Database Migration Service
Trend Micro Cloud One™ – Conformity monitors AWS Database Migration Service with the following rules:
- DMS Auto Minor Version Upgrade
Ensure that Amazon DMS replication instances have Auto Minor Version Upgrade feature enabled.
- DMS Multi-AZ
Ensure that Amazon DMS replication instances have the Multi-AZ feature enabled
- DMS Replication Instances Encrypted with KMS CMKs
Ensure that Amazon DMS replication instances are encrypted with KMS Customer Master Keys (CMKs).
- Publicly Accessible DMS Replication Instances
Ensure that AWS DMS replication instances are not publicly accessible and prone to security risks.