github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/aws/ec2/AVD-AWS-0027/Terraform.md

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/aws/ec2/AVD-AWS-0027/Terraform.md (about)

     1  
     2  Enable encryption using customer managed keys
     3  
     4  ```hcl
     5   resource "aws_kms_key" "ebs_encryption" {
     6   	enable_key_rotation = true
     7   }
     8   
     9   resource "aws_ebs_volume" "example" {
    10     availability_zone = "us-west-2a"
    11     size              = 40
    12   
    13     kms_key_id = aws_kms_key.ebs_encryption.arn
    14   
    15     tags = {
    16       Name = "HelloWorld"
    17     }
    18   }
    19   
    20  ```
    21  
    22  #### Remediation Links
    23   - https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ebs_volume#kms_key_id
    24