Workspace user volumes are not encrypted

Description

Encrypting your Workspace user volumes helps protect your data from unauthorized access or tampering. That way, you can ensure that only authorized users can access and modify the contents of your volumes. Such action can help protect against external threats such as hackers or malware, as well as internal threats such as accidental or unauthorized access.

Code Example

resource "aws_workspaces_workspace" "pass" {
    ...
+ user_volume_encryption_enabled = true
+ volume_encryption_key          = var.volume_encryption_key
    ...
}

Remediation

Terraform

Resource: aws_workspaces_workspace
Arguments: user_volume_encryption_enabled, volume_encryption_key

Rule Details

Field	Value
ID	IAC-0204
Severity	MEDIUM
IaC Type	Cloudformation
Frameworks	CloudFormation, Terraform, TerraformPlan, Serverless
Checkov ID	CKV_AWS_155

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

Workspace user volumes are not encrypted

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

Workspace user volumes are not encrypted ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

Workspace user volumes are not encrypted

Description

Code Example

Remediation

Rule Details

References