top of page

APIGateway.5

API Gateway REST API cache data should be encrypted at rest

Severity

Cloud Platforms

Resources

Related Standards

Automated

MEDIUM

AWS

Amazon API Gateway

AWS Foundational Best Practice, AWS Foundational Technical Review, CDR, ISO27001, SOC2,NIST CSF, NIST.800-53.r5,

This control checks whether all methods in Amazon API Gateway REST API stages that have cache enabled are encrypted. The control fails if any method in API Gateway REST API stage is configured to cache and the cache is not encrypted.

bottom of page