Evaluates whether transparent data encryption (TDE) is enabled for ApsaraDB for Redis instances. An instance with TDE enabled is considered compliant.
Scenarios
Tair (Redis OSS-compatible) supports TDE, which automatically encrypts and decrypts Redis Database (RDB) data files to improve data security and meet compliance requirements.
Risk level
Default risk level: medium.
You can change the risk level based on your requirements.
Compliance evaluation logic
If TDE is enabled for a Redis instance, the instance is considered compliant.
Rule details
|
Parameter |
Description |
|
Rule name |
Enable TDE for Redis instances |
|
Rule identifier |
|
|
Automatic remediation |
Not supported |
|
Rule trigger |
Periodic check every 24 hours |
|
Supported resource types |
ACS::Redis::DBInstance |
|
Input parameters |
None |
Incompliance remediation
To enable TDE for a Redis instance, see Enable transparent data encryption (TDE).