Security - AWS Storage Services Overview


IAM helps you securely control which users can perform operations such as launch and termination of EC2 instances in your account, and instance store volumes can only be mounted and accessed by the EC2 instances they belong to. Also, when you stop or terminate an instance, the applications and data in its instance store are erased, so no other instance can have access to the instance store in the future.

Access to an EC2 instance is controlled by the guest operating system. If you are concerned about the privacy of sensitive data stored in an instance storage volume, we recommend encrypting your data for extra protection. You can do so by using your own encryption tools, or by using third-party encryption tools available on the AWS Marketplace.