What problem are you trying to solve?

Focus on the what and why of the need you have, not the how you'd like it solved.

For security and compliance reasons, we are required to use customer-managed encryption keys for all S3 buckets that we create in AWS. However, the 'Push Logs to AWS S3 Bucket' feature that Atlas provides does not support CMEK when used with this target bucket.

What would you like to see happen?

Describe the desired outcome or enhancement.

We would like an additional option for push logs to AWS S3 that allows us to specify a KMS key to be used for pushing the logs.

Why is this important to you or your team?

Explain how the request adds value or solves a business need.

This is important for security and compliance reasons, as it isn't allowed to create S3 buckets that do not enforce the use of KMS.

What steps, if any, are you taking today to manage this problem?

Today, we have a security exception that allows us to push the logs to a bucket for which KMS is not enforced.