Data protection

Unencrypted AMI

Risk Level

Hazardous (3)

Platform(s)
Compliance Frameworks

Description

Amazon Machine Image (AMI) contains information to launch an EC2 instance. The AMIs that are encrypted always create an EC2 instance with encrypted root volumes. It was detected that the AMI {AwsEc2Image} is not encrypted. It is advised to encrypt AMIs in order to protect sensitive information from unauthorized access.
  • Recommended Mitigation

    It is recommended to encrypt AMIs to protect sensitive information from unauthorized access.