AWS > API Gateway >

API Stage-Level Cache Encryption

HIGH

Source

CloudSploit

api-stage-level-cache-encryption

management console

API Stage-Level Cache Encryption

Ensure that your Amazon API Gateway REST APIs are configured to encrypt API cached responses.

It is strongly recommended to enforce encryption for API cached responses in order to protect your data from unauthorized access.

Recommended Actions

Modify API Gateway API stages to enable encryption on cache data

Links

https://docs.aws.amazon.com/apigateway/latest/developerguide/data-protection-encryption.html

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.