AWS DynamoDB Table Has Encryption Enabled

This policy is deprecated, as all data stored in Amazon DynamoDB is now fully encrypted at rest by default.

Risk

Remediation Effort

High

Low

This policy validates that each DynamoDB table has encryption enabled. Encryption can further protect data in the case of a DB compromise that exposes the data directly in the database.

Remediation

To remediate this, enable table encryption for each DynamoDB table.

Reference

AWS DynamoDB Encryption at Rest documentation

PreviousAWS DynamoDB Table Has Autoscaling Enabled NextAWS EC2 AMI Launched on Approved Host

Last updated 2 years ago

Was this helpful?