API Gateway {AwsApiGatewayEndpoint} is not using client-side SSL certificates. SSL certificates are used to ensure that backend HTTP requests are made from API Gateway
Recommended Mitigation
We recommend to use client-side SSL certificates for authentication of backend HTTP requests