foundational_security_apigateway_1

1 API Gateway REST and WebSocket API logging should be enabled

foundational_security_apigateway_2

2 API Gateway REST API stages should be configured to use SSL certificates for backend authentication

foundational_security_apigateway_3

3 API Gateway REST API stages should have AWS X-Ray tracing enabled

foundational_security_apigateway_4

4 API Gateway should be associated with an AWS WAF web ACL

foundational_security_apigateway_5

5 API Gateway REST API cache data should be encrypted at rest

foundational_security_apigateway_8

8 API Gateway routes should specify an authorization type

foundational_security_apigateway_9

9 Access logging should be configured for API Gateway V2 Stages

foundational_security_apigateway

foundational_security

AWS Foundational Security Best Practices

API Gateway

aws_compliance

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, FFIEC, PCI, NIST, HIPAA, RBI CSF, GDPR, SOC 2, Audit Manager Control Tower, FedRAMP, GxP and AWS Foundational Security Best Practices controls across all your AWS accounts using Steampipe.

AWS Compliance

Apache License 2.0

steampipe-mod-aws-compliance

turbot/aws_compliance

Benchmark: API Gateway

Overview

Usage

Controls

Tags

Steampipe

Resources

Community