Data Store Encryption Policy

Open Raven provides a set of default Policy Sets. This is a list of Rules that check data store encryption issues.

Rule Name

Description

Personal & Privacy data is encrypted at rest

Encryption for data at rest should be enabled on any data store that has personal & privacy data.

Financial data encrypted at rest

Encryption for data at rest should be enabled on any data store that has financial data.

Health care data encrypted at rest

Encryption for data at rest should be enabled on any data store that has health care data.

Developers secrets encrypted at rest

Encryption for data at rest should be enabled on any data store that has developer secrets.

AWS KMS is used for encryption at rest

AWS KMS should be enabled all data stores rather than default encryption options.

Personal & Privacy data is backed up and backups are encrypted

Backup should be enabled on any data store that has personal & privacy data.

Financial data is backed up and backups are encrypted

Backup should be enabled and encrypted for on any data store that has financial data.

Health care data is backed up and backups are encrypted

Backup should be enabled on any data store that has health care data.


What’s Next