AWS Fargate now encrypts data stored on ephemeral storage by default in platform version 1.4
AWS Fargate, a serverless compute engine for Amazon Elastic Container Service (ECS) and Amazon Elastic Kubernetes Service (EKS), now encrypts data stored on the ephemeral storage with service managed keys using industry-standard AES-256 cryptographic algorithm. Fargate provides 20 GB of ephemeral storage for applications to download and process data. Customers who choose AWS Fargate now have data stored on the ephemeral storage encrypted by default. Encryption and decryption are handled seamlessly, so you don’t have to modify your applications to access your data.
You can run either ECS tasks or EKS pods on AWS Fargate and benefit from encryption of data stored on ephemeral storage at no additional charge, enabling you to achieve your compliance and security goals. To learn more read the blog post here.