1回答
- 新しい順
- 投票が多い順
- コメントが多い順
0
What I do know is that any traffic from the ALB to a target that is using SSL doesn’t strictly follow SSL standards.
The alb does not care if it connects to a target that’s running a self signed cert or a cert that’s expired.
That said you will never know if there’s a “man in the middle”
However, the information you have found regarding vpc traffic encryption is true which is transparent.
If it’s really a concern then end to end encryption may be needed to meet certain controls and standards. That’s I guess a business decision.
Not sure if that helps answer your question.
関連するコンテンツ
- 質問済み 6年前
- AWS公式更新しました 7ヶ月前
- AWS公式更新しました 2年前
"However, the information you have found regarding vpc traffic encryption is true which is transparent.", sure, but is AWS encrypting with the Caesar cipher, or are they doing something else? AWS seems confident in their encryption enough to tell users that it exists, so, they should make us confident in their encryption by telling us how it works.