PolarDB Cluster TDE Enabled

ID: rule:aliyun:polardb-cluster-enabled-tde
Severity: high
IaC Types: ROS, Terraform

Description

Ensures PolarDB clusters have Transparent Data Encryption (TDE) enabled.

Reason for Violation

TDE provides data-at-rest encryption for sensitive data stored in the database.

Recommendation

Set tde_status to Enabled for the PolarDB cluster.

Resource Types

• ROS: ALIYUN::POLARDB::DBCluster
• Terraform: alicloud_polardb_cluster