💼 [ECS.8] Secrets should not be passed as container environment variables

Contextual name: 💼 [ECS.8] Secrets should not be passed as container environment variables
ID: /frameworks/aws-fsbp-v1.0.0/ecs/08
Located in: 💼 Elastic Container Service (ECS)

Description

AWS Systems Manager Parameter Store can help you improve the security posture of your organization. We recommend using the Parameter Store to store secrets and credentials instead of directly passing them into your container instances or hard coding them into your code.

Similar

AWS Security Hub
- https://docs.aws.amazon.com/securityhub/latest/userguide/ecs-controls.html#ecs-8
Internal
- ID: dec-c-5d650d86

Similar Sections (Give Policies To)

Section	Sub Sections	Policies
💼 NIST SP 800-53 Revision 5 → 💼 CA-9(1) Internal System Connections _ Compliance Checks		15
💼 NIST SP 800-53 Revision 5 → 💼 CM-2 Baseline Configuration	7	13
💼 PCI DSS v4.0.1 → 💼 8.6.2 Passwords/passphrases for any application and system accounts that can be used for interactive login are not hard coded in scripts, configuration/property files, or bespoke and custom source code.

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags

Description​

Similar​

Similar Sections (Give Policies To)​

Sub Sections​

Description

Similar

Similar Sections (Give Policies To)

Sub Sections