For unencrypted volumes, you can encrypt a volume’s data by means of snapshot copying
- Create a snapshot of your unencrypted EBS volume. This snapshot is also unencrypted.
- Copy the snapshot while applying encryption parameters. The resulting target snapshot is encrypted.
- Restore the encrypted snapshot to a new volume, which is also encrypted.