search

aws-ia / terraform-aws-control_tower_account_factory

AWS Control Tower Account Factory
Apache License 2.0
605 stars 386 forks source link

Use S3 Bucket Keys #339

Open lanecor opened 1 year ago

lanecor commented 1 year ago

Describe the outcome you'd like

Reduce KMS costs by using S3 Bucket Keys on all AFT buckets.

Using a bucket-level key for SSE-KMS can reduce AWS KMS request costs by up to 99 percent by decreasing the request traffic from Amazon S3 to AWS KMS.

https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/s3_bucket_server_side_encryption_configuration#bucket_key_enabled

Is your feature request related to a problem you are currently experiencing? If so, please describe.

Unnecessary KMS costs

Additional context

Frugality 🍌

hanafya commented 1 year ago

Hey @lanecor!

I have created a feature request in our backlog for this feature! Thanks!