Identify and manage any access keys over a certain age.
Access keys are static credentials that can be quite easy to lose either accidentally or in attack. For example, they can be exposed in application code, or when stored on a local file system. This Op finds access keys older than a certain age and allows you to either revoke the keys or quarantine the associated user identity.
Supported Issue Types:
User _name_ has a stale access key
- The user _name_ has an access key that is _n_ days old.
- Revoke the access key
- Add the user to the quarantine group
We spend a lot of time talking to cloud security professionals, basically trying to figure out the best ways to get their jobs done in largely uncharted territory. Cloud technology is evolving at an unprecedented [...]
In Quick and Dirty: Building an S3 guardrail with Config we highlighted one of the big problems with Config: you need to set it up in each region of each account. Your best bet to make [...]