SHF - macpro-quickstart-serverless - master - MEDIUM - APIGateway.2 API Gateway REST API stages should be configured to use SSL certificates for backend authentication

Question

SHF - macpro-quickstart-serverless - master - MEDIUM - APIGateway.2 API Gateway REST API stages should be configured to use SSL certificates for backend authentication

mdial89f opened this issue 3 years ago · 0 comments

This issue was generated from Security Hub data and is managed through automation.
Please do not edit the title or body of this issue, or remove the security-hub tag. All other edits/comments are welcome.
Finding Id: arn:aws:securityhub:us-east-1:666736308865:subscription/aws-foundational-security-best-practices/v/1.0.0/APIGateway.2/finding/5c3e6d38-dad6-42da-8319-aed9be0c37bb

Type of Issue:

Security Hub Finding

Title:

APIGateway.2 API Gateway REST API stages should be configured to use SSL certificates for backend authentication

Id:

arn:aws:securityhub:us-east-1:666736308865:subscription/aws-foundational-security-best-practices/v/1.0.0/APIGateway.2/finding/5c3e6d38-dad6-42da-8319-aed9be0c37bb
(You may use this ID to lookup this finding's details in Security Hub)

Description

This control checks whether Amazon API Gateway REST API stages have SSL certificates configured that backend systems can use to authenticate that incoming requests are from the API Gateway.

Remediation

https://docs.aws.amazon.com/console/securityhub/APIGateway.2/remediation

AC:

The security hub finding is resolved or suppressed, indicated by a Workflow Status of Resolved or Suppressed.