1 Answer
- Newest
- Most votes
- Most comments
0
The public documentation has been updated for EC2 Linux and Windows:
The data on NVMe instance storage is encrypted using an XTS-AES-256 block cipher implemented in a hardware module on the instance. The encryption keys are generated using the hardware module and are unique to each NVMe instance storage device. All encryption keys are destroyed when the instance is stopped or terminated and cannot be recovered. You cannot disable this encryption and you cannot provide your own encryption key.
answered 6 years ago
Relevant content
- Accepted Answerasked a year ago
- asked 4 years ago
- asked a year ago
- AWS OFFICIALUpdated 9 months ago
- AWS OFFICIALUpdated 8 months ago