ECS disk with KMS encryption enabled

ID: rule:aliyun:ecs-disk-all-encrypted-by-kms
Severity: medium

Description

ECS disks (including system disk and data disks) are encrypted with KMS, considered compliant.

Reason for Violation

ECS disk is not encrypted with KMS

Recommendation

Enable KMS encryption for ECS disks by setting Encrypted to true and specifying a KMSKeyId

Resource Types

• ALIYUN::ECS::Disk