EUCSEC14-BP02 Encrypt data in transit in your EUC environment

Use encryption to protect data confidentiality while in transit inside your EUC environment.

Level of risk exposed if this best practice is not established: High

Implementation guidance

Use AWS EUC streaming protocols to encrypt streaming data in transit. Amazon WorkSpaces and Amazon WorkSpaces Applications provide data encryption of pixel streaming traffic between instances and end user devices by default. Evaluate the default levels of encryption to verify that they provide sufficient protection in terms of key length and cipher suites and satisfy the requirements of the organization. For further details regarding the encryption used for Amazon AppStream, see Data Protection in Amazon WorkSpaces Applications , and for Amazon WorkSpaces, see Data Protection in Amazon WorkSpaces.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

EUCSEC14-BP01 Encrypt disk volumes to protect data at rest

EUCSEC14-BP03 Limit egress channels available to users to only the required set of channels to perform their role