ASVS Requirement 12.3.3

• Level: 2
• Chapter: V12 Secure Communication
• Section: V12.3 General Service to Service Communication Security
• Source: 0x21-V12-Secure-Communication.md

Description

Verify that TLS or another appropriate transport encryption mechanism used for all connectivity between internal, HTTP-based services within the application, and does not fall back to insecure or unencrypted communications.