πΌ [EC2.7] EBS default encryption should be enabled
- Contextual name: πΌ [EC2.7] EBS default encryption should be enabled
- ID:
/frameworks/aws-fsbp-v1.0.0/ec2/07 - Located in: πΌ Elastic Compute Cloud (EC2)
Descriptionβ
When encryption is enabled for your account, Amazon EBS volumes and snapshot copies are encrypted at rest. This adds an additional layer of protection for your data.
Similarβ
- AWS Security Hub
- Internal
- ID:
dec-c-64d56cba
- ID:
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ NIST SP 800-53 Revision 5 β πΌ CA-9(1) Internal System Connections _ Compliance Checks | 15 | |||
| πΌ NIST SP 800-53 Revision 5 β πΌ CM-3(6) Configuration Change Control _ Cryptography Management | 4 | |||
| πΌ NIST SP 800-53 Revision 5 β πΌ SC-7(10) Boundary Protection _ Prevent Exfiltration | 4 | |||
| πΌ NIST SP 800-53 Revision 5 β πΌ SC-13 Cryptographic Protection | 4 | 6 | ||
| πΌ NIST SP 800-53 Revision 5 β πΌ SC-28 Protection of Information at Rest | 3 | 15 | 18 | |
| πΌ NIST SP 800-53 Revision 5 β πΌ SC-28(1) Protection of Information at Rest _ Cryptographic Protection | 10 | 12 | ||
| πΌ NIST SP 800-53 Revision 5 β πΌ SI-7(6) Software, Firmware, and Information Integrity _ Cryptographic Protection | 6 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (1)β
| Policy | Logic Count | Flags |
|---|---|---|
| π AWS Account EBS Volume Encryption Attribute is not enabled in all regions π’ | 1 | π’ x6 |
Internal Rulesβ
| Rule | Policies | Flags |
|---|---|---|
| βοΈ dec-x-0bdcd276 | 1 |