Back to All Checks
Medium EMR Regional

Amazon EMR security configurations should be encrypted in transit

NIST 800-53

Description

This control checks whether an Amazon EMR security configuration has encryption in transit enabled. The control fails if the security configuration doesn't enable encryption in transit. Data in transit refers to data that moves from one location to another, such as between nodes in your cluster or between your cluster and your application. Data may move across the internet or within a private network. Encrypting data in transit reduces the risk that an unauthorized user can eavesdrop on network traffic.

Remediation

To enable encryption in transit for your EMR security configuration, you need to update the encryption settings.

Steps

  1. Navigate to the Amazon EMR console
  2. Go to 'Security configurations' in the left navigation
  3. Select your security configuration
  4. Choose 'Edit' to modify the configuration
  5. In the 'Encryption' section, enable 'Encryption in transit'
  6. Configure the encryption settings (TLS, certificates, etc.)
  7. Save the configuration to apply encryption in transit

Compliance

NIST 800-53
Start Your Free Security Check