πΌ [EFS.1] Elastic File System should be configured to encrypt file data at-rest using AWS KMS
-
Contextual name: πΌ [EFS.1] Elastic File System should be configured to encrypt file data at-rest using AWS KMS
-
ID:
/frameworks/aws-fsbp-v1.0.0/efs/01 -
Located in: πΌ Elastic File System (EFS)
Descriptionβ
For an added layer of security for your sensitive data in Amazon EFS, you should create encrypted file systems. Amazon EFS supports encryption for file systems at-rest. You can enable encryption of data at rest when you create an Amazon EFS file system.
Similarβ
- AWS Security Hub
- Internal
- ID:
dec-c-b16cdd1e
- ID:
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ NIST SP 800-53 Revision 5 β πΌ CA-9(1) Internal System Connections _ Compliance Checks | 15 | |||
| πΌ NIST SP 800-53 Revision 5 β πΌ CM-3(6) Configuration Change Control _ Cryptography Management | 4 | |||
| πΌ NIST SP 800-53 Revision 5 β πΌ SC-7(10) Boundary Protection _ Prevent Exfiltration | 4 | |||
| πΌ NIST SP 800-53 Revision 5 β πΌ SC-13 Cryptographic Protection | 4 | 6 | ||
| πΌ NIST SP 800-53 Revision 5 β πΌ SC-28 Protection of Information at Rest | 3 | 15 | 18 | |
| πΌ NIST SP 800-53 Revision 5 β πΌ SC-28(1) Protection of Information at Rest _ Cryptographic Protection | 10 | 12 | ||
| πΌ NIST SP 800-53 Revision 5 β πΌ SI-7(6) Software, Firmware, and Information Integrity _ Cryptographic Protection | 6 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (1)β
| Policy | Logic Count | Flags |
|---|---|---|
| π AWS EFS File System encryption is not enabled π’ | 1 | π’ x6 |
Internal Rulesβ
| Rule | Policies | Flags |
|---|---|---|
| βοΈ dec-x-966d3183 | 1 |