Status: IN
AWS Backup independent encryption (using vault's KMS key instead of source resource's key) is only available for fully-managed resource types: S3, VMware VMs, DynamoDB (Advanced), EFS, Timestream, CloudFormation, and SAP HANA on EC2.
Source: entries/2026/03/12/aws-backup-latest-devguide-encryptionhtml.md