πΌ [RDS.27] RDS DB clusters should be encrypted at rest
- Contextual name: πΌ [RDS.27] RDS DB clusters should be encrypted at rest
- ID:
/frameworks/aws-fsbp-v1.0.0/rds/27 - Located in: πΌ Relational Database Service (RDS)
Descriptionβ
Data at rest refers to any data that's stored in persistent, non-volatile storage for any duration. Encryption helps you protect the confidentiality of such data, reducing the risk that an unauthorized user can access it. Encrypting your RDS DB clusters protects your data and metadata against unauthorized access. It also fulfills compliance requirements for data-at-rest encryption of production file systems.
Similarβ
- AWS Security Hub
- Internal
- ID:
dec-c-807c65e2
- ID:
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ NIST SP 800-53 Revision 5 β πΌ CA-9(1) Internal System Connections _ Compliance Checks | 15 | |||
| πΌ NIST SP 800-53 Revision 5 β πΌ CM-3(6) Configuration Change Control _ Cryptography Management | 4 | |||
| πΌ NIST SP 800-53 Revision 5 β πΌ SC-7(10) Boundary Protection _ Prevent Exfiltration | 4 | |||
| πΌ NIST SP 800-53 Revision 5 β πΌ SC-13 Cryptographic Protection | 4 | 6 | ||
| πΌ NIST SP 800-53 Revision 5 β πΌ SC-28 Protection of Information at Rest | 3 | 15 | 18 | |
| πΌ NIST SP 800-53 Revision 5 β πΌ SC-28(1) Protection of Information at Rest _ Cryptographic Protection | 10 | 12 | ||
| πΌ NIST SP 800-53 Revision 5 β πΌ SI-7(6) Software, Firmware, and Information Integrity _ Cryptographic Protection | 6 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|