AWS securityhub documentation change
Summary
Combined two paragraphs for conciseness and updated SSL policy parameters to include additional TLS 1.3 and FIPS-compliant policies
Security assessment
The change adds new TLS 1.3 SSL policies to the parameters list, which are security-related configurations for ELB. However, there's no explicit mention of addressing a specific security vulnerability, so it's considered an update to security documentation rather than a response to a security issue.
Diff
diff --git a/securityhub/latest/userguide/elb-controls.md b/securityhub/latest/userguide/elb-controls.md index 3ca1dd907..d2ed71ec7 100644 --- a//securityhub/latest/userguide/elb-controls.md +++ b//securityhub/latest/userguide/elb-controls.md @@ -9,3 +9 @@ -These AWS Security Hub controls evaluate the Elastic Load Balancing service and resources. - -These controls may not be available in all AWS Regions. For more information, see [Availability of controls by Region](./securityhub-regions.html#securityhub-regions-control-support). +These AWS Security Hub controls evaluate the Elastic Load Balancing service and resources. The controls might not be available in all AWS Regions. For more information, see [Availability of controls by Region](./securityhub-regions.html#securityhub-regions-control-support). @@ -450 +448 @@ To associate an Application Load Balancer with a web ACL, see [Associating or di -**Parameters:** `sslPolicies`: `ELBSecurityPolicy-TLS13-1-2-2021-06`, `ELBSecurityPolicy-TLS13-1-2-FIPS-2023-04`, `ELBSecurityPolicy-TLS13-1-3-2021-06`, `ELBSecurityPolicy-TLS13-1-3-FIPS-2023-04` (not customizable) +**Parameters:** `sslPolicies`: `ELBSecurityPolicy-TLS13-1-2-2021-06, ELBSecurityPolicy-TLS13-1-2-FIPS-2023-04, ELBSecurityPolicy-TLS13-1-3-2021-06, ELBSecurityPolicy-TLS13-1-3-FIPS-2023-04, ELBSecurityPolicy-TLS13-1-2-Res-2021-06, ELBSecurityPolicy-TLS13-1-2-Res-FIPS-2023-04` (not customizable)