Class: Aws::SecurityHub::Types::SecurityControl
- Inherits:
-
Struct
- Object
- Struct
- Aws::SecurityHub::Types::SecurityControl
- Includes:
- Aws::Structure
- Defined in:
- lib/aws-sdk-securityhub/types.rb
Overview
A security control in Security Hub CSPM describes a security best practice related to a specific resource.
Constant Summary collapse
- SENSITIVE =
[]
Instance Attribute Summary collapse
-
#description ⇒ String
The description of a security control across standards.
-
#last_update_reason ⇒ String
The most recent reason for updating the customizable properties of a security control.
-
#parameters ⇒ Hash<String,Types::ParameterConfiguration>
An object that identifies the name of a control parameter, its current value, and whether it has been customized.
-
#provider ⇒ String
The cloud provider whose resources the security control evaluates.
-
#remediation_url ⇒ String
A link to Security Hub CSPM documentation that explains how to remediate a failed finding for a security control.
-
#security_control_arn ⇒ String
The Amazon Resource Name (ARN) for a security control across standards, such as
arn:aws:securityhub:eu-central-1:123456789012:security-control/S3.1. -
#security_control_id ⇒ String
The unique identifier of a security control across standards.
-
#security_control_status ⇒ String
The enablement status of a security control in a specific standard.
-
#severity_rating ⇒ String
The severity of a security control.
-
#title ⇒ String
The title of a security control.
-
#update_status ⇒ String
Identifies whether customizable properties of a security control are reflected in Security Hub CSPM findings.
Instance Attribute Details
#description ⇒ String
The description of a security control across standards. This typically summarizes how Security Hub CSPM evaluates the control and the conditions under which it produces a failed finding. This parameter doesn't reference a specific standard.
32375 32376 32377 32378 32379 32380 32381 32382 32383 32384 32385 32386 32387 32388 32389 |
# File 'lib/aws-sdk-securityhub/types.rb', line 32375 class SecurityControl < Struct.new( :security_control_id, :security_control_arn, :title, :description, :remediation_url, :severity_rating, :security_control_status, :update_status, :parameters, :last_update_reason, :provider) SENSITIVE = [] include Aws::Structure end |
#last_update_reason ⇒ String
The most recent reason for updating the customizable properties of a
security control. This differs from the UpdateReason field of the
BatchUpdateStandardsControlAssociations API, which tracks
the reason for updating the enablement status of a control. This
field accepts alphanumeric characters in addition to white spaces,
dashes, and underscores.
32375 32376 32377 32378 32379 32380 32381 32382 32383 32384 32385 32386 32387 32388 32389 |
# File 'lib/aws-sdk-securityhub/types.rb', line 32375 class SecurityControl < Struct.new( :security_control_id, :security_control_arn, :title, :description, :remediation_url, :severity_rating, :security_control_status, :update_status, :parameters, :last_update_reason, :provider) SENSITIVE = [] include Aws::Structure end |
#parameters ⇒ Hash<String,Types::ParameterConfiguration>
An object that identifies the name of a control parameter, its current value, and whether it has been customized.
32375 32376 32377 32378 32379 32380 32381 32382 32383 32384 32385 32386 32387 32388 32389 |
# File 'lib/aws-sdk-securityhub/types.rb', line 32375 class SecurityControl < Struct.new( :security_control_id, :security_control_arn, :title, :description, :remediation_url, :severity_rating, :security_control_status, :update_status, :parameters, :last_update_reason, :provider) SENSITIVE = [] include Aws::Structure end |
#provider ⇒ String
The cloud provider whose resources the security control evaluates.
For example, AWS or Azure.
32375 32376 32377 32378 32379 32380 32381 32382 32383 32384 32385 32386 32387 32388 32389 |
# File 'lib/aws-sdk-securityhub/types.rb', line 32375 class SecurityControl < Struct.new( :security_control_id, :security_control_arn, :title, :description, :remediation_url, :severity_rating, :security_control_status, :update_status, :parameters, :last_update_reason, :provider) SENSITIVE = [] include Aws::Structure end |
#remediation_url ⇒ String
A link to Security Hub CSPM documentation that explains how to remediate a failed finding for a security control.
32375 32376 32377 32378 32379 32380 32381 32382 32383 32384 32385 32386 32387 32388 32389 |
# File 'lib/aws-sdk-securityhub/types.rb', line 32375 class SecurityControl < Struct.new( :security_control_id, :security_control_arn, :title, :description, :remediation_url, :severity_rating, :security_control_status, :update_status, :parameters, :last_update_reason, :provider) SENSITIVE = [] include Aws::Structure end |
#security_control_arn ⇒ String
The Amazon Resource Name (ARN) for a security control across
standards, such as
arn:aws:securityhub:eu-central-1:123456789012:security-control/S3.1.
This parameter doesn't mention a specific standard.
32375 32376 32377 32378 32379 32380 32381 32382 32383 32384 32385 32386 32387 32388 32389 |
# File 'lib/aws-sdk-securityhub/types.rb', line 32375 class SecurityControl < Struct.new( :security_control_id, :security_control_arn, :title, :description, :remediation_url, :severity_rating, :security_control_status, :update_status, :parameters, :last_update_reason, :provider) SENSITIVE = [] include Aws::Structure end |
#security_control_id ⇒ String
The unique identifier of a security control across standards. Values for this field typically consist of an Amazon Web Services service name and a number, such as APIGateway.3.
32375 32376 32377 32378 32379 32380 32381 32382 32383 32384 32385 32386 32387 32388 32389 |
# File 'lib/aws-sdk-securityhub/types.rb', line 32375 class SecurityControl < Struct.new( :security_control_id, :security_control_arn, :title, :description, :remediation_url, :severity_rating, :security_control_status, :update_status, :parameters, :last_update_reason, :provider) SENSITIVE = [] include Aws::Structure end |
#security_control_status ⇒ String
The enablement status of a security control in a specific standard.
32375 32376 32377 32378 32379 32380 32381 32382 32383 32384 32385 32386 32387 32388 32389 |
# File 'lib/aws-sdk-securityhub/types.rb', line 32375 class SecurityControl < Struct.new( :security_control_id, :security_control_arn, :title, :description, :remediation_url, :severity_rating, :security_control_status, :update_status, :parameters, :last_update_reason, :provider) SENSITIVE = [] include Aws::Structure end |
#severity_rating ⇒ String
The severity of a security control. For more information about how Security Hub CSPM determines control severity, see Assigning severity to control findings in the Security Hub CSPM User Guide.
32375 32376 32377 32378 32379 32380 32381 32382 32383 32384 32385 32386 32387 32388 32389 |
# File 'lib/aws-sdk-securityhub/types.rb', line 32375 class SecurityControl < Struct.new( :security_control_id, :security_control_arn, :title, :description, :remediation_url, :severity_rating, :security_control_status, :update_status, :parameters, :last_update_reason, :provider) SENSITIVE = [] include Aws::Structure end |
#title ⇒ String
The title of a security control.
32375 32376 32377 32378 32379 32380 32381 32382 32383 32384 32385 32386 32387 32388 32389 |
# File 'lib/aws-sdk-securityhub/types.rb', line 32375 class SecurityControl < Struct.new( :security_control_id, :security_control_arn, :title, :description, :remediation_url, :severity_rating, :security_control_status, :update_status, :parameters, :last_update_reason, :provider) SENSITIVE = [] include Aws::Structure end |
#update_status ⇒ String
Identifies whether customizable properties of a security control are
reflected in Security Hub CSPM findings. A status of READY
indicates that Security Hub CSPM uses the current control parameter
values when running security checks of the control. A status of
UPDATING indicates that all security checks might not use the
current parameter values.
32375 32376 32377 32378 32379 32380 32381 32382 32383 32384 32385 32386 32387 32388 32389 |
# File 'lib/aws-sdk-securityhub/types.rb', line 32375 class SecurityControl < Struct.new( :security_control_id, :security_control_arn, :title, :description, :remediation_url, :severity_rating, :security_control_status, :update_status, :parameters, :last_update_reason, :provider) SENSITIVE = [] include Aws::Structure end |