Query: ELB listeners SSL/TLS protocol version should be checked

Description

Using insecure ciphers for your ELB Predefined or Custom Security Policy, could make the SSL connection between the client and the load balancer vulnerable to exploits. TLS 1.0 was recommended to be disabled by PCI Council after June 30, 2016.

Query

Tables used in this query:

• aws_ec2_load_balancer_listener

Controls using this query:

• ELB listeners SSL/TLS protocol version should be checked

SQL