WKLD.08 Encrypt Amazon EBS volumes
Enforce encryption of Amazon Elastic Block Store (Amazon EBS) volumes as the default behavior in your AWS
account. Encrypted volumes have the same input/output operations per second (IOPS) performance
as unencrypted volumes with a minimal effect on latency. This prevents rebuilding volumes at a
later date for compliance or other reasons. For more information, see Must-know best practices
for Amazon EBS encryption
To encrypt Amazon EBS volumes
-
Enable encryption by default (Amazon EBS documentation).