Ensure OSS Buckets Secure Transport Enabled

OSS Buckets should have secure transport enabled. This topic uses an example policy to demonstrate how to authorize a RAM user to access Alibaba Cloud by using a specified method.

Risk Level: high
Platform: Alicloud
Spectral Rule ID: TFALCLD054

REMEDIATION

set policy to secure transport enabled

- "Effect": "Allow",
+ "Effect": "Deny",
"Condition": {
  "Bool": {
    acs:SecureTransport": [ "false" ]
  }
}

Read more: