AWS EBS default encryption disabled
Incident Management が一般に使用できるようになりました。 Incident Management が広範に使用できるようになりました。
<  Back to rules search

AWS EBS default encryption disabled

cloudtrail

Classification:

compliance

Set up the cloudtrail integration.

このページは日本語には対応しておりません。随時翻訳に取り組んでいます。翻訳に関してご質問やご意見ございましたら、お気軽にご連絡ください。

Overview

Goal

Detect when an EBS encryption is disabled by default.

Strategy

Monitor CloudTrail and detect when EBS encryption is disabled by default via the following API call:

Triage & Response

  1. Determine which user in your organization owns the API key that made this API call.
  2. Contact the user and let them know that it is best practice to enable EBS encryption by default.
  3. Re-enable EBS encryption by default.

For more information about Amazon EBS Encryption, check out the Amazon EBS Encryption documentation.