Data Encryption in AWS

You can use Entrust Cryptographic Security Platform Vault to encrypt any Linux or Windows data drive or Windows boot drive in AWS the same way you would any other drive in any other system.

If you want to encrypt a Linux root, swap, or system drive, you must first create a boot partition either on the existing AWS root volume or on a new AWS volume.

Device to be Encrypted	Details
Linux or Windows Data Drive	All data drives in AWS can be encrypted using the standard procedures described in the Data Encryption chapter of the Administration Guide
Windows Boot Drive	Windows boot drives in AWS can be encrypted using the standard procedures described in the Windows Boot Drive Encryption chapter of the Administration Guide
Linux Root, Swap, or System Drive	For details, see: Prerequisites and Restrictions. Creating a Boot Partition on the Existing AWS Root Volume. Creating a Boot Partition on a New AWS Volume.

Device to be Encrypted

Details

Linux or Windows Data Drive

All data drives in AWS can be encrypted using the standard procedures described in the Data Encryption chapter of the Administration Guide

Windows Boot Drive

Windows boot drives in AWS can be encrypted using the standard procedures described in the Windows Boot Drive Encryption chapter of the Administration Guide

Linux Root, Swap, or System Drive

For details, see:

Prerequisites and Restrictions.
Creating a Boot Partition on the Existing AWS Root Volume.
Creating a Boot Partition on a New AWS Volume.