RDS databases should be encrypted

rds
This page is not yet available in Spanish. We are working on its translation.
If you have any questions or feedback about our current translation project, feel free to reach out to us!

Description

Amazon RDS-encrypted database instances use the industry-standard AES-256 encryption algorithm to encrypt data on the servers hosting Amazon RDS DB instances. After the data is encrypted, Amazon RDS manages the authentication of access and decryption transparently, with minimal impact on performance. With RDS encryption enabled, all data stored on the instance’s underlying storage, automated backups, read replicas, and snapshots is encrypted, enhancing the security of your data.

Remediation

For instructions on enabling Amazon RDS encryption for a DB instance, refer to Enabling Amazon RDS Encryption for a DB Instance.