Aws Cluster Encryption Disabled
Description
Detects AWS DynamoDB Accelerator (DAX) clusters that are running without encryption at rest enabled. Unencrypted DAX clusters can expose sensitive cached data to unauthorized access if the underlying storage is compromised. This violates security best practices for protecting data at rest.
Detection Strategy
• Queries AWS DAX clusters in the specified region using the describe_clusters API
• Examines each cluster's SSEDescription.Status configuration
• Reports a vulnerability if the encryption status is explicitly set to 'DISABLED'
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan.If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.