Redis Instance BYOK TDE Enabled

ID: rule:aliyun:redis-instance-enabled-byok-tde
Severity: medium

Description

Ensures that Redis instances have Transparent Data Encryption (TDE) enabled using Bring Your Own Key (BYOK).

Reason for Violation

TDE protects data at rest, and BYOK allows you to maintain control over the encryption keys.

Recommendation

Enable TDE for the Redis instance using a KMS key.

Resource Types

• ALIYUN::Redis::DBInstance