ElastiCache Redis In-Transit or At-Rest not Encrypted

Network misconfigurations

ElastiCache Redis In-Transit or At-Rest not Encrypted

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

Brazilian General Data Protection (LGPD)
CCM-CSA
CCPA
cis_8
coppa
CPRA
Data Security Posture Management (DSPM) Best Practices
GDPR
hdh
HITRUST
ISO 27701
ISO/IEC 27001
Mitre ATT&CK
mpa
New Zealand Information Security Manual
NIST 800-171
NIST 800-53
Orca Best Practices
PDPA

Description

ElastiCache makes it easy to set up, manage, and scale distributed in-memory cache environments in the Cloud. It provides a high performance, resizable, and cost-effective in-memory cache. It was detected that the Elasticache cluster has disabled In-Transit and At-Rest Encryption. Data encryption helps prevent unauthorized users from reading sensitive data available on your Redis clusters and their associated cache storage systems.

Recommended Mitigation

It is recommended to enable In-Transit and At-Rest encryption when creating a cluster. Enabling encryption can have some performance impact. For more information: <a href="https://docs.aws.amazon.com/AmazonElastiCache/latest/red-ug/encryption.html" target="_blank" rel="noopener noreferrer">https://docs.aws.amazon.com/AmazonElastiCache/latest/red-ug/encryption.html</a>

ElastiCache Redis In-Transit or At-Rest not Encrypted

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS