Data security in Amazon ElastiCache - Amazon ElastiCache for Redis
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Data security in Amazon ElastiCache

To help keep your data secure, Amazon ElastiCache and Amazon EC2 provide mechanisms to guard against unauthorized access of your data on the server.

Amazon ElastiCache for Redis provides encryption features for data on caches running Redis versions 3.2.6 (scheduled for EOL, see Redis versions end of life schedule), 4.0.10 or later:

  • In-transit encryption encrypts your data whenever it is moving from one place to another, such as between nodes in your cluster or between your cache and your application.

  • At-rest encryption encrypts your on-disk data during sync and backup operations.

Amazon ElastiCache for Redis also supports authenticating users with either IAM or Redis AUTH, and authorizing user operations using Role-Based Access Control (RBAC).

Image: ElastiCache for Redis Security Diagram

ElastiCache for Redis Security Diagram