Skip to main content

ECS In-Use Disk Encryption

ID: rule:aliyun:ecs-in-use-disk-encrypted
Severity: medium
IaC Types: ROS, Terraform

Description

ECS data disks should have encryption enabled to protect data at rest.

Reason for Violation

The ECS disk does not have encryption enabled, which may expose sensitive data to unauthorized access.

Recommendation

Enable encryption for the ECS disk by setting encrypted to true.

Resource Types

  • ROS: ALIYUN::ECS::Disk
  • Terraform: alicloud_disk
  • Terraform: alicloud_disk_attachment
  • Terraform: alicloud_ecs_disk
  • Terraform: alicloud_ecs_disk_attachment