AWS has recently introduced VPC Encryption Controls, allowing customers to validate whether traffic within and between VPCs is encrypted and to require encryption where supported. The feature provides

InfoQ is a leading online platform for software developers, architects, and technical leaders, providing news, articles, presentations, and interviews on a wide range of topics, including agile practices, DevOps, microservices, and emerging technologies. With a focus on quality content and expert insights, InfoQ helps professionals stay informed about the latest trends, best practices, and industry developments. Developers can learn from real-world experiences, gain  knowledge, and connect with peers in the global software community through InfoQ's diverse and engaging content.

InfoQ

AWS launched VPC Encryption Controls, enabling customers to monitor and enforce encryption for traffic within and between VPCs. The feature operates in two modes: monitor mode for visibility into unencrypted traffic, and enforce mode that requires Nitro-based infrastructure and drops unencrypted traffic. It helps organizations meet compliance requirements like HIPAA, PCI DSS, and FedRAMP. The service costs $0.15/hour per non-empty VPC (approximately $110/month) after a free trial period ending March 1, 2026, and is currently available in select AWS regions.

AWS Introduces VPC Encryption Controls to Enforce Encryption in Transit