Method cache encryption ensures that any sensitive data in the cache is not vulnerable to compromise in the event of interception
Impact
Data stored in the cache that is unencrypted may be vulnerable to compromise
Recommended Actions
Follow the appropriate remediation steps below to resolve the issue.
Enable cache encryption
1
2
3
4
5
6
7
8
9
10
11
12
13
14
AWSTemplateFormatVersion: 2010-09-09
Description: Good Example of SAM API
Resources:
ApiGatewayApi:
Type: AWS::Serverless::Api
Properties:
Name: Good SAM API example
StageName: Prod
TracingEnabled: false
Domain:
SecurityPolicy: TLS_1_2
MethodSettings:
CacheDataEncrypted: true