Steampipe mods are now Powerpipe →
Powerpipe Hub 
Hub
Mods
turbot/terraform_aws_compliance
Overview
69Dashboards
357Controls
357Queries
2Variables
GitHub
Loading controls...

Control: API Gateway REST API cache data should be encrypted at rest

Description

This control checks whether all methods in API Gateway REST API stages that have cache enabled are encrypted. The control fails if any method in an API Gateway REST API stage is configured to cache and the cache is not encrypted.

Usage

Run the control in your terminal:

powerpipe control run terraform_aws_compliance.control.apigateway_stage_cache_encryption_at_rest_enabled

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run terraform_aws_compliance.control.apigateway_stage_cache_encryption_at_rest_enabled --share

SQL

This control uses a named query:

apigateway_stage_cache_encryption_at_rest_enabled

Tags

category = Compliance
gdpr = true
hipaa = true
nist_800_53_rev_4 = true
nist_csf = true
plugin = terraform
rbi_cyber_security = true
service = AWS/APIGateway