By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Are i3 NVMe SSD drives encrypted by default?

0

I have a customer exploring the i3 and encryption at rest is a requirement. Are i3 NVMe SSD drives encrypted by default or will customers need to implement their own encryption?

Topics
Compute
Tags
Amazon EC2
Language
English
AWS
Andy_M
asked 7 years ago616 views
1 Answer
0
Accepted Answer

The public documentation has been updated for EC2 Linux and Windows:

The data on NVMe instance storage is encrypted using an XTS-AES-256 block cipher implemented in a hardware module on the instance. The encryption keys are generated using the hardware module and are unique to each NVMe instance storage device. All encryption keys are destroyed when the instance is stopped or terminated and cannot be recovered. You cannot disable this encryption and you cannot provide your own encryption key.

AWS
AWS-User-2813056
answered 6 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content