Best practice rules for GCP Cloud Key Management Service (KMS)
Trend Micro Cloud One™ – Conformity monitors GCP Cloud Key Management Service (KMS) with the following rules:
- Check for Publicly Accessible Cloud KMS Keys
Ensure there are no publicly accessible KMS cryptographic keys available within your Google Cloud account.
- Detect Google Cloud KMS Configuration Changes
Cloud KMS configuration changes have been detected within your Google Cloud Platform (GCP) account.
- Rotate Google Cloud KMS Keys
Ensure that all KMS cryptographic keys available within your Google Cloud account are regularly rotated.