- Newest
- Most votes
- Most comments
Hello.
The following documentation suggests that all Lightsail block storage is encrypted by default.
https://aws.amazon.com/lightsail/features/highly-available-storage/?nc1=h_ls
All data in attached disks and disk snapshots is automatically encrypted, keeping your data secure.
https://aws.amazon.com/lightsail/faq/?nc1=h_ls
Q: Does Lightsail block storage offer encryption?
Yes, to help keep your data secure, all Lightsail attached disks and disk snapshots are encrypted at rest by default, using keys that Lightsail manages on your behalf. Lightsail also provides encryption of data as it moves between Lightsail instances and attached disks.
@mandelbrezel I asked one of my contacts at AWS a few year back about this very same topic. If I remember correctly, the system disc IS NOT encrypted at rest. Therefore you would want to put any sensitive data on your attached block storage, as that is encrypted at rest.
Relevant content
- asked 2 years ago
- Accepted Answerasked a year ago
- AWS OFFICIALUpdated 6 months ago
- AWS OFFICIALUpdated 8 months ago
- AWS OFFICIALUpdated 10 months ago
- AWS OFFICIALUpdated 9 months ago
Hello and thank you! The links talk about attached discs and block storage. Does this include the system disc, i.e. the disc coming with your instance?
The URL I shared in the first one describes Lightsail's block storage, so additional storage should be included in the encryption as well. https://aws.amazon.com/lightsail/features/highly-available-storage/?nc1=h_ls