top of page
CloudFront.3
CloudFront distributions should require encryption in transit
Severity
Cloud Platforms
Resources
Related Standards
Automated
MEDIUM
AWS
Amazon CloudFront
AWS Foundational Best Practice, AWS Well-Architected, CDR, ISO27001, SOC2,NIST CSF, NIST.800-53.r5,
This control checks whether an Amazon CloudFront distribution requires viewers to use HTTPS directly; or whether it uses redirection. The control fails if ViewerProtocolPolicy is set to allow-all for defaultCacheBehavior or for cacheBehaviors.
bottom of page