Aqua CSPM

Redshift Cluster CMK Encryption

Quick Info

Plugin TitleRedshift Cluster CMK Encryption
CloudAWS
CategoryRedshift
DescriptionEnsures Redshift clusters are encrypted using KMS customer master keys (CMKs)
More InfoKMS CMKs should be used to encrypt redshift clusters in order to have full control over data encryption and decryption.
AWS Linkhttp://docs.aws.amazon.com/redshift/latest/mgmt/working-with-db-encryption.html
Recommended ActionUpdate Redshift clusters encryption configuration to use KMS CMKs instead of AWS managed-keys.

Detailed Remediation Steps