Root and User Workspaces volumes should be encrypted

Severity	Exploitability	Providers	Categories
HIGH	HIGH	AWS	DATA, PERMISSION

Description

Amazon WorkSpaces is a fully managed desktop virtualization service for Windows and Linux that enables you to access resources from any supported device.

The storage volumes should always be encrypted to protect the data if accesses are compromised.

Impact

Potential data exposure	Visible in logs	User interaction required	Privileges required
True	False	False	True

Not encrypting data could lead to data leak in case of an attack.

Remediation guidelines

Enable encryption for Root and User volummes from the WorkSpaces console, providing a KMS key.

References

Encrypted WorkSpaces

Root and User Workspaces volumes should be encrypted

Description

Impact

Remediation guidelines

References

Was this page helpful?

Something we didn’t cover?

See our Roadmap

Subscribe on GitHub

Submit a request

API status

Root and User Workspaces volumes should be encrypted

Description​

Impact​

Remediation guidelines​

References​

Was this page helpful?

Something we didn’t cover?

See our Roadmap

Subscribe on GitHub

Submit a request

API status

Subscribe to our newsletter

Description

Impact

Remediation guidelines

References