Root and User Workspaces volumes should be encrypted
Severity | Exploitability | Providers | Categories |
---|---|---|---|
HIGH | HIGH | AWS | DATA, PERMISSION |
Description
Amazon WorkSpaces is a fully managed desktop virtualization service for Windows and Linux that enables you to access resources from any supported device.
The storage volumes should always be encrypted to protect the data if accesses are compromised.
Impact
Potential data exposure | Visible in logs | User interaction required | Privileges required |
---|---|---|---|
True | False | False | True |
Not encrypting data could lead to data leak in case of an attack.
Remediation guidelines
Enable encryption for Root and User volummes from the WorkSpaces console, providing a KMS key.