Azure Storage Services Benchmark
Profile Applicability: Level 1 Description: Shared access signatures (SAS) provide limited access to Azure Storage resources. When generating a SAS token,...
Fri, 16 May, 2025 at 2:10 AM
Profile Applicability: Level 1 Description: Shared Access Signatures (SAS) provide delegated access to Azure Storage resources with fine-grained permissi...
Fri, 16 May, 2025 at 2:14 AM
Profile Applicability: Level 1 Description: Stored Access Policies (SAP) are named policies that define constraints such as permissions and expiration ti...
Thu, 15 May, 2025 at 2:51 AM
Profile Applicability: Level 1 Description: Microsoft Managed Keys (MMK) provide default encryption at rest for critical data stored in Azure services, m...
Thu, 15 May, 2025 at 2:55 AM
Profile Applicability: Level 2 Description: Enabling blob versioning allows Azure to retain previous versions of blobs automatically. When versioning...
Thu, 15 May, 2025 at 2:57 AM
Profile Applicability: Level 2 Description: Customer Managed Keys (CMK) enable organizations to have full control over the encryption keys used to protec...
Thu, 15 May, 2025 at 3:00 AM
Profile Applicability: Level 2 Description: This control enforces the use of locked immutability policies on Azure Blob Storage containers that store...
Thu, 15 May, 2025 at 3:01 AM
Profile Applicability: Level 2 Description: Azure Data Box enables secure, large-scale offline data transfer to Azure. By default, it uses BitLocker ...
Thu, 15 May, 2025 at 3:05 AM
Profile Applicability: Level 1 Description: Disabling public network access on Azure resources, such as Storage Accounts, SQL servers, and other data ser...
Thu, 15 May, 2025 at 3:05 AM
Profile Applicability: Level 1 Description: Network Access Rules govern which IP addresses or networks can connect to Azure resources such as Storage Acc...
Thu, 15 May, 2025 at 3:09 AM