Azure Service Bus Doesn't Use Double Encryption

Description

Azure Service Bus is a fully managed enterprise message broker with message queues and publish-subscribe topics. It offers secure and reliable communication between disparate applications. Ensuring that the Service Bus uses double encryption ensures that your data is encrypted at rest and in transit, providing an additional layer of protection against unauthorized access.

This policy checks that Azure Service Bus namespaces have double encryption enabled.

Code Example

terraform

resource "azurerm_servicebus_namespace" "example" {
  name                = "example-servicebus-namespace"
  # ... other configurations ...

  customer_managed_key {
+   infrastructure_encryption_enabled = true
    # ... other configurations ...
  }

  # ... other configurations ...
}

Remediation

Terraform

Resource:

azurerm_servicebus_namespace

Arguments:

customer_managed_key/[0]/infrastructure_encryption_enabled

Rule Details

Field	Value
ID	IAC-0706
Severity	MEDIUM
IaC Type	Terraform
Frameworks	Terraform,
Checkov ID	CKV_AZURE_199

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

Azure Service Bus Doesn't Use Double Encryption

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

Azure Service Bus Doesn't Use Double Encryption ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

Azure Service Bus Doesn't Use Double Encryption

Description

Code Example

Remediation

Rule Details

References