Ensure Tencent Cloud CLBs use modern, encrypted protocols

Description

This policy checks whether Tencent Cloud CLBs (Cloud Load Balancers) use modern, encrypted protocols. The rule inspects the 'protocol' attribute of the 'tencentcloud_clb_listener' resource to ensure it does not use insecure protocols such as TCP, UDP, or HTTP. Using insecure protocols can expose the load balancer to security risks, including eavesdropping and tampering. It is recommended to use encrypted protocols like HTTPS to protect data in transit.

Code Example

terraform

resource "tencentcloud_clb_listener" "example" {
  protocol = "HTTPS"
}

Remediation

Update the 'protocol' attribute of the 'tencentcloud_clb_listener' resource to use a secure, encrypted protocol like HTTPS.

Rule Details

Field	Value
ID	IAC-1329
Severity	MEDIUM
IaC Type	Terraform
Frameworks	tencentcloud_clb_listener
Checkov ID	CKV_TC_12

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

Ensure Tencent Cloud CLBs use modern, encrypted protocols

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

Ensure Tencent Cloud CLBs use modern, encrypted protocols ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

Ensure Tencent Cloud CLBs use modern, encrypted protocols

Description

Code Example

Remediation

Rule Details

References