Encryption at rest disabled in EMR security configuration Affecting EMR service in AWS


Severity

0.0
medium
0
10
Severity Framework
Snyk CCSS
Rule category
Data/ Access

Is your environment affected by this misconfiguration?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
Frameworks
CIS-ControlsCSA-CCMGDPRHIPAAISO-27001NIST-800-53PCI-DSSSOC-2
  • Snyk IDSNYK-CC-00296
  • creditSnyk Research Team

Description

Data encryption at rest will not be enforced by Elastic Map Reduce (EMR). Note the underlying storage backend may have own encryption settings applied already. See referenced encryption options for more details.

How to fix?

Set Properties.SecurityConfiguration attribute with appropriate security configuration policy. See references for configuration specification.

CloudFormation

    Terraform