Ensure AWS ELB Policy uses only secure protocols

Error: AWS ELB Policy uses some unsecure protocols

Bridgecrew Policy ID: BC_AWS_NETWORKING_75
Checkov Check ID: CKV_AWS_213
Severity: LOW

AWS ELB Policy uses some unsecure protocols

Description

By ensuring that your AWS ELB policy only uses secure protocols, you can help prevent attackers from intercepting and reading sensitive information that is transmitted between your ELB and its clients. This can help protect your network and data from various types of attacks, including man-in-the-middle attacks, eavesdropping, and other types of data interception.

Fix - Buildtime

Terraform

resource "aws_load_balancer_policy" "pass" {
  load_balancer_name = aws_elb.wu-tang.name
  policy_name        = "wu-tang-ssl"
  policy_type_name   = "SSLNegotiationPolicyType"

  policy_attribute {
    name  = "Protocol-TLSv1.2"
    value = "true"
  }
}