Ensure Server instance is encrypted.
Description
This policy checks whether server instances have encryption enabled for their base block storage volumes. Encryption is crucial for protecting sensitive data at rest, and its absence can lead to unauthorized access and data breaches. Ensuring server instances are encrypted is vital for maintaining the confidentiality and integrity of data. This check is particularly important in cloud environments where data is stored remotely and the risk of unauthorized access may be higher.
Code Example
terraform
resource "ncloud_server" "example" {
is_encrypted_base_block_storage_volume = true
}Remediation
Enable encryption for the server instance's base block storage volume by setting the 'is_encrypted_base_block_storage_volume' attribute to 'true'.
Rule Details
| Field | Value |
|---|---|
| ID | IAC-1209 |
| Severity | HIGH |
| IaC Type | Terraform |
| Frameworks | ncloud_server |
| Checkov ID | CKV_NCP_6 |