Class: Aws::SecurityHub::Types::SecurityControl

Inherits:
Struct
  • Object
show all
Includes:
Aws::Structure
Defined in:
lib/aws-sdk-securityhub/types.rb

Overview

A security control in Security Hub describes a security best practice related to a specific resource.

Constant Summary collapse

SENSITIVE =
[]

Instance Attribute Summary collapse

Instance Attribute Details

#descriptionString

The description of a security control across standards. This typically summarizes how Security Hub evaluates the control and the conditions under which it produces a failed finding. This parameter doesn’t reference a specific standard.

Returns:

  • (String)


29358
29359
29360
29361
29362
29363
29364
29365
29366
29367
29368
29369
29370
29371
# File 'lib/aws-sdk-securityhub/types.rb', line 29358

class SecurityControl < Struct.new(
  :security_control_id,
  :security_control_arn,
  :title,
  :description,
  :remediation_url,
  :severity_rating,
  :security_control_status,
  :update_status,
  :parameters,
  :last_update_reason)
  SENSITIVE = []
  include Aws::Structure
end

#last_update_reasonString

The most recent reason for updating the customizable properties of a security control. This differs from the ‘UpdateReason` field of the

‘BatchUpdateStandardsControlAssociations` ][1

API, which tracks

the reason for updating the enablement status of a control. This field accepts alphanumeric characters in addition to white spaces, dashes, and underscores.

[1]: docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchUpdateStandardsControlAssociations.html

Returns:

  • (String)


29358
29359
29360
29361
29362
29363
29364
29365
29366
29367
29368
29369
29370
29371
# File 'lib/aws-sdk-securityhub/types.rb', line 29358

class SecurityControl < Struct.new(
  :security_control_id,
  :security_control_arn,
  :title,
  :description,
  :remediation_url,
  :severity_rating,
  :security_control_status,
  :update_status,
  :parameters,
  :last_update_reason)
  SENSITIVE = []
  include Aws::Structure
end

#parametersHash<String,Types::ParameterConfiguration>

An object that identifies the name of a control parameter, its current value, and whether it has been customized.

Returns:



29358
29359
29360
29361
29362
29363
29364
29365
29366
29367
29368
29369
29370
29371
# File 'lib/aws-sdk-securityhub/types.rb', line 29358

class SecurityControl < Struct.new(
  :security_control_id,
  :security_control_arn,
  :title,
  :description,
  :remediation_url,
  :severity_rating,
  :security_control_status,
  :update_status,
  :parameters,
  :last_update_reason)
  SENSITIVE = []
  include Aws::Structure
end

#remediation_urlString

A link to Security Hub documentation that explains how to remediate a failed finding for a security control.

Returns:

  • (String)


29358
29359
29360
29361
29362
29363
29364
29365
29366
29367
29368
29369
29370
29371
# File 'lib/aws-sdk-securityhub/types.rb', line 29358

class SecurityControl < Struct.new(
  :security_control_id,
  :security_control_arn,
  :title,
  :description,
  :remediation_url,
  :severity_rating,
  :security_control_status,
  :update_status,
  :parameters,
  :last_update_reason)
  SENSITIVE = []
  include Aws::Structure
end

#security_control_arnString

The Amazon Resource Name (ARN) for a security control across standards, such as ‘arn:aws:securityhub:eu-central-1:123456789012:security-control/S3.1`. This parameter doesn’t mention a specific standard.

Returns:

  • (String)


29358
29359
29360
29361
29362
29363
29364
29365
29366
29367
29368
29369
29370
29371
# File 'lib/aws-sdk-securityhub/types.rb', line 29358

class SecurityControl < Struct.new(
  :security_control_id,
  :security_control_arn,
  :title,
  :description,
  :remediation_url,
  :severity_rating,
  :security_control_status,
  :update_status,
  :parameters,
  :last_update_reason)
  SENSITIVE = []
  include Aws::Structure
end

#security_control_idString

The unique identifier of a security control across standards. Values for this field typically consist of an Amazon Web Services service name and a number, such as APIGateway.3.

Returns:

  • (String)


29358
29359
29360
29361
29362
29363
29364
29365
29366
29367
29368
29369
29370
29371
# File 'lib/aws-sdk-securityhub/types.rb', line 29358

class SecurityControl < Struct.new(
  :security_control_id,
  :security_control_arn,
  :title,
  :description,
  :remediation_url,
  :severity_rating,
  :security_control_status,
  :update_status,
  :parameters,
  :last_update_reason)
  SENSITIVE = []
  include Aws::Structure
end

#security_control_statusString

The enablement status of a security control in a specific standard.

Returns:

  • (String)


29358
29359
29360
29361
29362
29363
29364
29365
29366
29367
29368
29369
29370
29371
# File 'lib/aws-sdk-securityhub/types.rb', line 29358

class SecurityControl < Struct.new(
  :security_control_id,
  :security_control_arn,
  :title,
  :description,
  :remediation_url,
  :severity_rating,
  :security_control_status,
  :update_status,
  :parameters,
  :last_update_reason)
  SENSITIVE = []
  include Aws::Structure
end

#severity_ratingString

The severity of a security control. For more information about how Security Hub determines control severity, see [Assigning severity to control findings] in the *Security Hub User Guide*.

[1]: docs.aws.amazon.com/securityhub/latest/userguide/controls-findings-create-update.html#control-findings-severity

Returns:

  • (String)


29358
29359
29360
29361
29362
29363
29364
29365
29366
29367
29368
29369
29370
29371
# File 'lib/aws-sdk-securityhub/types.rb', line 29358

class SecurityControl < Struct.new(
  :security_control_id,
  :security_control_arn,
  :title,
  :description,
  :remediation_url,
  :severity_rating,
  :security_control_status,
  :update_status,
  :parameters,
  :last_update_reason)
  SENSITIVE = []
  include Aws::Structure
end

#titleString

The title of a security control.

Returns:

  • (String)


29358
29359
29360
29361
29362
29363
29364
29365
29366
29367
29368
29369
29370
29371
# File 'lib/aws-sdk-securityhub/types.rb', line 29358

class SecurityControl < Struct.new(
  :security_control_id,
  :security_control_arn,
  :title,
  :description,
  :remediation_url,
  :severity_rating,
  :security_control_status,
  :update_status,
  :parameters,
  :last_update_reason)
  SENSITIVE = []
  include Aws::Structure
end

#update_statusString

Identifies whether customizable properties of a security control are reflected in Security Hub findings. A status of ‘READY` indicates that Security Hub uses the current control parameter values when running security checks of the control. A status of `UPDATING` indicates that all security checks might not use the current parameter values.

Returns:

  • (String)


29358
29359
29360
29361
29362
29363
29364
29365
29366
29367
29368
29369
29370
29371
# File 'lib/aws-sdk-securityhub/types.rb', line 29358

class SecurityControl < Struct.new(
  :security_control_id,
  :security_control_arn,
  :title,
  :description,
  :remediation_url,
  :severity_rating,
  :security_control_status,
  :update_status,
  :parameters,
  :last_update_reason)
  SENSITIVE = []
  include Aws::Structure
end