EKS Secrets are not Encrypted

Tenacity Id

Risk Level

Categories

eks-002

3

Last Updated:

April 21, 2022

Amazon Elastic Kubernets Service (EKS) secret does not have encryption enabled. EKS uses Kubernetes Secrets for secret management, and should be enabled during cluster creation. Best practice is to isolate pods to individual namespaces that only have access to secrets they need.