Ensure NAS is securely encrypted
Description
This policy checks whether encryption is enabled for NAS volumes. Encryption is crucial for protecting sensitive data stored on NAS volumes from unauthorized access. Without encryption, data can be easily accessed and exploited by malicious actors, leading to data breaches and other security incidents. Enabling encryption ensures that data is protected both at rest and in transit.
Code Example
terraform
resource "ncloud_nas_volume" "example" {
is_encrypted_volume = true
}Remediation
Enable encryption for the NAS volume by setting the 'is_encrypted_volume' attribute to 'true'.
Rule Details
| Field | Value |
|---|---|
| ID | IAC-1217 |
| Severity | HIGH |
| IaC Type | Terraform |
| Frameworks | ncloud_nas_volume |
| Checkov ID | CKV_NCP_14 |