EFS data should be encrypted at rest

amazon-efs
This page is not yet available in Spanish. We are working on its translation.
If you have any questions or feedback about our current translation project, feel free to reach out to us!

Description

This control evaluates whether Amazon EFS is set up to encrypt file data at rest through AWS KMS.

It is recommended to utilize encrypted file systems. This is supported by Amazon EFS and can be enabled during the creation of a file system.

Remediation

To learn how to enable encryption for a new Amazon EFS file system, consult the Encrypting Data at Rest section in the Amazon EFS User Guide.