ECS disk with KMS encryption enabled
ID: rule:aliyun:ecs-disk-all-encrypted-by-kms
Severity: medium
IaC Types: ROS, Terraform
Description
ECS disks are encrypted with KMS, considered compliant.
Reason for Violation
ECS disk is not encrypted with KMS
Recommendation
Enable KMS encryption for ECS disks by setting encrypted to true and specifying kms_key_id.
Resource Types
- ROS:
ALIYUN::ECS::Disk - Terraform:
alicloud_disk - Terraform:
alicloud_ecs_disk