Ensure Tencent Cloud CBS is encrypted
Description
This policy checks whether encryption is enabled for Tencent Cloud CBS storage. Encryption is crucial for protecting sensitive data at rest, and its absence can lead to unauthorized access and data breaches. Enabling encryption ensures that even if an unauthorized party gains access to the storage, they will not be able to read the data without the decryption key. Therefore, it's essential to ensure that encryption is enabled for all storage resources.
Code Example
terraform
resource "tencentcloud_cbs_storage" "example" {
encrypt = true
}Remediation
Enable encryption for the Tencent Cloud CBS storage by setting the 'encrypt' property to True.
Rule Details
| Field | Value |
|---|---|
| ID | IAC-1318 |
| Severity | HIGH |
| IaC Type | Terraform |
| Frameworks | tencentcloud_cbs_storage |
| Checkov ID | CKV_TC_1 |