<  Back to rules search

ELB listener is using TLSv1.2

elb

Classification:

compliance

このページは日本語には対応しておりません。随時翻訳に取り組んでいます。翻訳に関してご質問やご意見ございましたら、お気軽にご連絡ください。

Description

Update your Elastic Load Balancer (ELB) listener to TLSv1.2+.

Rationale

Using an insecure or older TLS is vulnerable to exploits, such as SSL stripping and other various attacks. Using TLSv1.2+ ensures that your data remains private and secure when a connection is established between the client and server.

Remediation

Console

Follow the Update Security Policy docs to learn how to modify an HTTPS listener in the AWS Console.

CLI

  1. Run modify-listener with the ssl-policy flag to define a policy. See the AWS CLI documentation for examples.