Elastic Load Balancer Has Insecure SSL Protocols

Overview

Check whether Elastic Load Balancers (ELBs) are configured with weak SSL ciphers. This check specfically looks at whether if the ssl policy is the secure policy 'ELBSecurityPolicy-TLS-1-2-2017-01'. Employing insecure ciphers can compromise the security of data during transmission. It is advisable to utilize a Security policy that employs the strongest possible ciphers while eliminating outdated and insecure ones.

Vendor

AWS

Cloud Service

ELB

References

https://docs.aws.amazon.com/elasticloadbalancing/latest/APIReference/API_DescribeLoadBalancers.html, https://docs.aws.amazon.com/elasticloadbalancing/latest/application/create-https-listener.html#describe-ssl-policies

Severity

Item Types

AWS::ElasticLoadBalancing::LoadBalancer

Overview​

Vendor​

Cloud Service​

References​

Severity​

Item Types​