Data at risk

MemoryStore Redis instance is not in-transit encrypted

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

GCP MemoryStore is a service that allows you to construct your apps by using open source caching engines: Memcached or Redis. Memorystore is protocol compliant and supports both caching engines. It was detected that GCP Redis instance {GcpRedisInstance} is not in-transit encrypted. In-transit encryption using HTTPS (TLS) protocol helps to prevent potential attackers from eavesdropping or manipulating network traffic using attacks such as man-in-the-middle. However, take into account that in-transit encrypting data might have an impact on performance.

  • Recommended Mitigation

    It is recommended to in-transit encrypt GCP Redis instances. For more information see: <a href="https://cloud.google.com/memorystore/docs/redis/in-transit-encryption#:~:text=When%20in%2Dtransit%20encryption%20is,of%20using%20the%20TLS%20protocol" target="_blank" rel="noopener noreferrer">https://cloud.google.com/memorystore/docs/redis/in-transit-encryption#:~:text=When%20in%2Dtransit%20encryption%20is,of%20using%20the%20TLS%20protocol</a>

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.