Policy: AWS > Well-Architected Tool > AWS Well-Architected Framework > Security > SEC 08. How do you protect your data at rest?

Protect your data at rest by implementing multiple controls, to reduce the risk of unauthorized access or mishandling.

Resource Types

This policy targets the following resource types:

This policy is used with the following primary policy:

Schema Type	`string`
Default	`Skip`
Valid Values [YAML]	`Skip` `Check: Choices based on sub policies` `Check: None of these` `Check: Question does not apply to this workload` `Enforce: Choices based on sub policies` `Enforce: None of these` `Enforce: Question does not apply to this workload`
Examples [YAML]	`Skip`

Category URI

tmod:@turbot/turbot#/control/categories/other

Policy Type URI

tmod:@turbot/aws-wellarchitected-framework#/policy/types/sec08

GraphQL

query policyType(id: "tmod:@turbot/aws-wellarchitected-framework#/policy/types/sec08") { … }

query policySettings(filter: "policyTypeId:'tmod:@turbot/aws-wellarchitected-framework#/policy/types/sec08'") { … }

query policyValues(filter: "policyTypeId:'tmod:@turbot/aws-wellarchitected-framework#/policy/types/sec08'") { … }

CLI

Get Policy Type

turbot graphql policy-type --id "tmod:@turbot/aws-wellarchitected-framework#/policy/types/sec08"

Get Policy Settings

turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/aws-wellarchitected-framework#/policy/types/sec08"