Package com.cloudforgeci.api.core.rules
Class ElbSecurityRules
java.lang.Object
com.cloudforgeci.api.core.rules.ElbSecurityRules
- All Implemented Interfaces:
FrameworkRules<SystemContext>
@ComplianceFramework(value="ElbSecurity",
priority=0,
alwaysLoad=true,
displayName="ELB Security",
description="Cross-framework Elastic Load Balancer security validation")
public class ElbSecurityRules
extends Object
implements FrameworkRules<SystemContext>
Elastic Load Balancer security compliance validation rules.
These rules enforce ELB security requirements across multiple compliance frameworks:
- PCI-DSS - Req 4.1: Encrypt transmission; Req 10: Audit logging
- HIPAA - ยง164.312(e)(1): Transmission security
- SOC 2 - CC6.7: Data transmission security
- GDPR - Art.32(1)(a): Encryption of data
Controls Implemented
- ALB/NLB access logging
- HTTPS/TLS listener configuration
- SSL policy (TLS 1.2+) enforcement
- Deletion protection
- Cross-zone load balancing
- Since:
- 3.0.0
-
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionvoidinstall(SystemContext ctx) Install compliance validation rules into the CDK construct tree.Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, waitMethods inherited from interface com.cloudforge.core.interfaces.FrameworkRules
alwaysLoad, description, displayName, frameworkId, priority
-
Constructor Details
-
ElbSecurityRules
public ElbSecurityRules()
-
-
Method Details
-
install
Description copied from interface:FrameworkRulesInstall compliance validation rules into the CDK construct tree.This method is called during CDK synthesis to register validation rules for the compliance framework. Implementations should use
ctx.getNode().addValidation()to add CDK validations.- Specified by:
installin interfaceFrameworkRules<SystemContext>- Parameters:
ctx- the system context containing deployment configuration and CDK stack
-