AWS > ELB >

ELBv2 TLS Version and Cipher Header Enabled

MEDIUM

Source

CloudSploit

elbv2-tls-version-and-cipher-header-enabled

management console

ELBv2 TLS Version and Cipher Header Enabled

Ensures that AWS ELBv2 load balancers have TLS version and cipher headers enabled.

ELBv2 load balancers should be configured with TLS version and cipher headers for security compliance and best practices.

Recommended Actions

Update ELBv2 load balancer traffic configuration to enable TLS version and cipher headers

Links

https://docs.aws.amazon.com/elasticloadbalancing/latest/application/application-load-balancers.html

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.