Macie Custom Data Identifier

An AWS Macie Custom Data Identifier is a user-defined rule that helps Macie detect sensitive data unique to your organization. It allows you to specify patterns using regular expressions, along with optional keywords and contextual checks, to identify data that built-in identifiers may not cover. This enables more precise discovery and protection of sensitive information across your AWS environment.

aws.macie2_custom_data_identifier

Fields

TitleIDTypeData TypeDescription
_keycorestring
account_idcorestring
arncorestringThe Amazon Resource Name (ARN) of the custom data identifier.
created_atcoretimestampThe date and time, in UTC and extended ISO 8601 format, when the custom data identifier was created.
deletedcoreboolSpecifies whether the custom data identifier was deleted. If you delete a custom data identifier, Amazon Macie doesn't delete it permanently. Instead, it soft deletes the identifier.
descriptioncorestringThe custom description of the custom data identifier.
idcorestringThe unique identifier for the custom data identifier.
ignore_wordscorearray<string>An array that lists specific character sequences (ignore words) to exclude from the results. If the text matched by the regular expression contains any string in this array, Amazon Macie ignores it. Ignore words are case sensitive.
keywordscorearray<string>An array that lists specific character sequences (keywords), one of which must precede and be within proximity (maximumMatchDistance) of the regular expression to match. Keywords aren't case sensitive.
maximum_match_distancecoreint64The maximum number of characters that can exist between the end of at least one complete character sequence specified by the keywords array and the end of the text that matches the regex pattern. If a complete keyword precedes all the text that matches the pattern and the keyword is within the specified distance, Amazon Macie includes the result. Otherwise, Macie excludes the result.
namecorestringThe custom name of the custom data identifier.
regexcorestringThe regular expression (regex) that defines the pattern to match.
severity_levelscorejsonSpecifies the severity that's assigned to findings that the custom data identifier produces, based on the number of occurrences of text that match the custom data identifier's detection criteria. By default, Amazon Macie creates findings for S3 objects that contain at least one occurrence of text that matches the detection criteria, and Macie assigns the MEDIUM severity to those findings.
tagscorehstore