Encrypting data in transit - FSx for Lustre

Encrypting data in transit

Scratch 2 and persistent file systems can automatically encrypt data in transit. In the following table, if there is a check mark in the cell for that deployment type and AWS Region, then data is encrypted in transit when the file system is accessed from Amazon EC2 instances that support encryption in transit and also for all communications between hosts within the file system. To learn which EC2 instances support encryption in transit, see Encryption in transit in the Amazon EC2 User Guide for Linux Instances.

In-transit encryption of data for scratch 2 and persistent file systems is available in the following AWS Regions.

AWS Region Scratch_2 Persistent_1 Persistent_2

US East (Ohio)

US East (N. Virginia)

US West (Oregon)

US West (N. California) *

US West (Los Angeles)

AWS GovCloud (US-East) *

AWS GovCloud (US-West)

Canada (Central) *

Europe (Ireland)

Europe (Milan)

Europe (Frankfurt)

Europe (Paris)

Europe (London)

Europe (Stockholm) *

Asia Pacific (Seoul)

Asia Pacific (Singapore)

Asia Pacific (Tokyo) *

Asia Pacific (Mumbai) *

Asia Pacific (Hong Kong) *

Asia Pacific (Sydney) *

Israel (Tel Aviv) *

South America (São Paulo) *

Note

* In-transit data encryption is available for file systems created after April 11, 2021.