πΌ [DMS.9] DMS endpoints should use SSL
- Contextual name: πΌ [DMS.9] DMS endpoints should use SSL
- ID:
/frameworks/aws-fsbp-v1.0.0/dms/09 - Located in: πΌ Database Migration Service (DMS)
Descriptionβ
SSL/TLS connections provide a layer of security by encrypting connections between DMS replication instances and your database. Using certificates provides an extra layer of security by validating that the connection is being made to the expected database. It does so by checking the server certificate that is automatically installed on all database instances that you provision. By enabling SSL connection on your DMS endpoints, you protect the confidentiality of the data during the migration.
Similarβ
- AWS Security Hub
- Internal
- ID:
dec-c-a433d623
- ID:
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ NIST SP 800-53 Revision 5 β πΌ AC-4 Information Flow Enforcement | 32 | 61 | 73 | |
| πΌ NIST SP 800-53 Revision 5 β πΌ SC-7(4) Boundary Protection _ External Telecommunications Services | 17 | |||
| πΌ NIST SP 800-53 Revision 5 β πΌ SC-8 Transmission Confidentiality and Integrity | 5 | 8 | 10 | |
| πΌ NIST SP 800-53 Revision 5 β πΌ SC-8(1) Transmission Confidentiality and Integrity _ Cryptographic Protection | 8 | 10 | ||
| πΌ NIST SP 800-53 Revision 5 β πΌ SC-8(2) Transmission Confidentiality and Integrity _ Pre- and Post-transmission Handling | 2 | |||
| πΌ NIST SP 800-53 Revision 5 β πΌ SC-13 Cryptographic Protection | 4 | 6 | ||
| πΌ NIST SP 800-53 Revision 5 β πΌ SC-23 Session Authenticity | 5 | 2 | ||
| πΌ NIST SP 800-53 Revision 5 β πΌ SC-23(3) Session Authenticity _ Unique System-generated Session Identifiers | 2 | |||
| πΌ PCI DSS v4.0.1 β πΌ 4.2.1 Strong cryptography and security protocols are implemented to safeguard PAN during transmission over open, public networks. | 2 | 9 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|