AWS DAX cluster endpoint does not use TLS (Transport Layer Security)

Description

The Transport Layer Security (TLS) protocol secures transmission of data between servers and web browsers, over the Internet, using standard encryption technology. To follow security best practices and the latest PCI compliance standards, enable the latest version of TLS protocol (i.e. TLS 1.2) for all yourDAX Servers.

Code Example

resource "aws_dax_cluster" "pass" {
  cluster_name                     = var.cluster_name
  iam_role_arn                     = var.iam_role_arn
  parameter_group_name             = aws_dax_parameter_group.example.name
  subnet_group_name                = aws_dax_subnet_group.example.name
  cluster_endpoint_encryption_type = "TLS"
  server_side_encryption {
    enabled = false #default is false
  }
  tags = { test = "Fail" }
}

Remediation

Terraform

Rule Details

Field	Value
ID	IAC-0287
Severity	LOW
IaC Type	Terraform
Frameworks	Terraform
Checkov ID	CKV_AWS_239

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

AWS DAX cluster endpoint does not use TLS (Transport Layer Security)

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

AWS DAX cluster endpoint does not use TLS (Transport Layer Security) ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

AWS DAX cluster endpoint does not use TLS (Transport Layer Security)

Description

Code Example

Remediation

Rule Details

References