检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Disk Encryption Is Enabled for CSS Clusters Rule Details Table 1 Rule details Parameter Description Rule Name css-cluster-disk-encryption-check Identifier css-cluster-disk-encryption-check Description If disk encryption is not enabled for a CSS cluster, this cluster is noncompliant
MRS Clusters Have KMS Encryption Enabled Rule Details Table 1 Rule details Parameter Description Rule Name mrs-cluster-encrypt-enable Identifier mrs-cluster-encrypt-enable Description If KMS encryption is not enabled for an MRS cluster, this cluster is noncompliant. Tag mrs Trigger
Disk Encryption Are Enabled Rule Details Table 1 Rule details Parameter Description Rule Name volumes-encrypted-check-by-default Identifier volumes-encrypted-check-by-default Description If an EVS disk is not encrypted, this disk is noncompliant. Tag evs Trigger Type Configuration
SFS Turbo File Systems Have KMS Encryption Enabled Rule Details Table 1 Rule details Parameter Description Rule Name sfsturbo-encrypted-check Identifier sfsturbo-encrypted-check Description If KMS encryption is not enabled for an SFS Turbo file system, this file system is noncompliant
GeminiDB Instances Have Disk Encryption Enabled Rule Details Table 1 Rule details Parameter Description Name gaussdb-nosql-enable-disk-encryption Identifier gaussdb-nosql-enable-disk-encryption Description If a GeminiDB instance does not have disk encryption enabled, this instance
Backup Encryption Check Rule Details Table 1 Rule details Parameter Description Rule Name cbr-backup-encrypted-check Identifier cbr-backup-encrypted-check Description If a CBR backup is not encrypted, this backup is noncompliant. Tag cbr Trigger Type Configuration change Filter Type
RDS Instances Use KMS Encryption Rule Details Table 1 Rule details Parameter Description Rule Name rds-instances-enable-kms Identifier rds-instances-enable-kms Description If KMS encryption is not enabled for an RDS instance, this instance is noncompliant. Tag rds Trigger Type Configuration
Data Transmission Encryption Is Enabled Rule Details Table 1 Rule details Parameter Description Rule Name gaussdb-instance-ssl-enable Identifier gaussdb-instance-ssl-enable Description If a GaussDB instance does not have SSL enabled, this instance is noncompliant. Tag gaussdb Trigger
Data Transmission Encryption Is Enabled Rule Details Table 1 Rule details Parameter Description Rule Name gaussdb-mysql-instance-ssl-enable Identifier gaussdb-mysql-instance-ssl-enable Description If a TaurusDB instance does not have SSL enabled, this instance is noncompliant. Tag
KMS Encryption Check Rule Details Table 1 Rule details Parameter Description Rule Name dws-enable-kms Identifier dws-enable-kms Description If KMS encryption is not enabled for a DWS cluster, this cluster is noncompliant. Tag dws Trigger Type Configuration change Filter Type dws.clusters
This compromises data security, and public access cannot be enabled. 6_SECURE DEVICES: ENCRYPTION Protect data by encrypting it. SMEs should ensure the data stored on mobile devices such as laptops, smartphones, and tables are encrypted.
Project Parameter Encryption Check Rule Details Table 1 Rule details Parameter Description Rule Name cloudbuildserver-encryption-parameter-check Identifier cloudbuildserver-encryption-parameter-check Description If encryption is not enabled for custom parameters of a CodeArts project
Data Encryption Workshop Key Status Check Key Rotation Has Been Enabled CSMS Secrets Are Rotated CSMS Secrets Have Enabled Automatic Rotation CSMS Secrets Have Been Configured with Specified KMS Keys CSMS Secrets Have Been Rotated Within the Specified Period Parent topic: Built-In
Best Practices for Data Transmission Encryption The following table lists the rules and solutions included in this conformance package template. Table 1 Conformance package description Rule Cloud Service Description apig-instances-ssl-enabled apig If no SSL certificates are attached
Best Practices for Static Data Encryption The following table lists the rules and solutions included in this conformance package template. Table 1 Conformance package description Rule Cloud Service Description cbr-backup-encrypted-check cbr If a CBR backup is not encrypted, this backup
Private Images Have Encryption Enabled Rule Details Table 1 Rule details Parameter Description Rule Name ims-images-enable-encryption Identifier ims-images-enable-encryption Description If a private image does not have encryption enabled, this image is noncompliant. Tag ims Trigger
