Data protection

PostgreSQL Database Server ‘Infrastructure double encryption’ configuration is Disabled

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

If Double Encryption is enabled, another layer of encryption is implemented at the hardware level before the storage or network level. Information will be encrypted before it is even accessed, preventing both interception of data in motion if the network layer encryption is broken and data at rest in system resources such as memory or processor cache. Encryption will also be in place for any backups taken of the database, so the key will secure access the data in all forms.
  • Recommended Mitigation

    For each server, ensure that 'Infrastructure encryption enabled' is 'checked'