This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Announcements
This site is in read only until July 22 as we migrate to a new platform; refer to this community post for more details.
Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.
Log in to ask a question

How to fix WEAK_SSL_POLICY vulnerabilities reported by Security Command Center GCP

Posted on 05-02-2023 02:40 AM
devfied
Bronze 3
Bronze 3
Reply posted on --/--/---- --:-- AM

Hi All,

Recently I have checked the Security Command Center of My Apigee GCP project. I can see some vulnerability observations are reported there. In that something weird reporting is related to GCP load balancer's SSL. Please find the same thing below.

Please share your insights on this issue and recommendations to fix this Weak SSL Policy.
@dchiesa1 

 

severityfinding_classparent_display_namecategorytypedisplay_namedescription
MEDIUMMISCONFIGURATIONSecurity Health AnalyticsWEAK_SSL_POLICYgoogle.compute.TargetHttpsProxyapigee-proxy-url-map-2-target-proxy

HTTPS and SSL Proxy load balancers use SSL policies to determine the protocol and cipher suites used in the TLS connections established between users and the Internet. These connections encrypt sensitive data to prevent malicious eavesdroppers from accessing it. A weak SSL policy permits clients using outdated versions of TLS to connect with a less secure cipher suite or protocol. For a list of recommended and outdated cipher suites, see https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-4.

 

 

 

0 1 522
Topic Labels
0 Likes
Reply
1 REPLY 1
Top Solution Authors
View all