Ensure AWS ELB Policy uses only secure protocols
Error: AWS ELB Policy uses some unsecure protocols
Bridgecrew Policy ID: BC_AWS_NETWORKING_75
Checkov Check ID: CKV_AWS_213
Severity: LOW
AWS ELB Policy uses some unsecure protocols
Description
By ensuring that your AWS ELB policy only uses secure protocols, you can help prevent attackers from intercepting and reading sensitive information that is transmitted between your ELB and its clients. This can help protect your network and data from various types of attacks, including man-in-the-middle attacks, eavesdropping, and other types of data interception.
Fix - Buildtime
Terraform
resource "aws_load_balancer_policy" "pass" {
load_balancer_name = aws_elb.wu-tang.name
policy_name = "wu-tang-ssl"
policy_type_name = "SSLNegotiationPolicyType"
policy_attribute {
name = "Protocol-TLSv1.2"
value = "true"
}
}
Updated 9 months ago