Description

Amazon DynamoDB Accelerator (DAX) encryption at rest provides an additional layer of data protection by helping secure your data from unauthorized access to the underlying storage.

Resolution: Enable encryption at rest for DAX Cluster.

Examples

Example of incorrect code:

resource "aws_dax_cluster" "bad_example" {
	// no server side encryption at all
}

resource "aws_dax_cluster" "bad_example" {
	// other DAX config

	server_side_encryption {
		// empty server side encryption config
	}
}

resource "aws_dax_cluster" "bad_example" {
	// other DAX config

	server_side_encryption {
		enabled = false // disabled server side encryption
	}
}

Example of correct code:

resource "aws_dax_cluster" "good_example" {
	// other DAX config

	server_side_encryption {
		enabled = true // enabled server side encryption
	}
}

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Files

AWS081.md

AWS081.md

Description

Examples

Files

AWS081.md

Latest commit

History

AWS081.md

File metadata and controls

Description

Examples