API Gateway is not using SSL certificates

Network misconfigurations

API Gateway is not using SSL certificates

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

AWS Foundational Security Best Practices Controls
CCM-CSA
New Zealand Information Security Manual
NIST 800-171
NIST 800-53
Orca Best Practices

Description

API Gateway {AwsApiGatewayEndpoint} is not using client-side SSL certificates. SSL certificates are used to ensure that backend HTTP requests are made from API Gateway

Recommended Mitigation

We recommend to use client-side SSL certificates for authentication of backend HTTP requests

API Gateway is not using SSL certificates

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS