MemoryStore Redis instance is not in-transit encrypted

Data at risk

MemoryStore Redis instance is not in-transit encrypted

Risk Level

Informational (4)

Platform(s)

Description

GCP MemoryStore is a service that allows you to construct your apps by using open source caching engines: Memcached or Redis. Memorystore is protocol compliant and supports both caching engines. It was detected that GCP Redis instance {GcpRedisInstance} is not in-transit encrypted. In-transit encryption using HTTPS (TLS) protocol helps to prevent potential attackers from eavesdropping or manipulating network traffic using attacks such as man-in-the-middle. However, take into account that in-transit encrypting data might have an impact on performance.

Recommended Mitigation

It is recommended to in-transit encrypt GCP Redis instances. For more information see: https://cloud.google.com/memorystore/docs/redis/in-transit-encryption#:~:text=When%20in%2Dtransit%20encryption%20is,of%20using%20the%20TLS%20protocol

MemoryStore Redis instance is not in-transit encrypted

Description

Need help?