top of page

CloudFront.3

CloudFront distributions should require encryption in transit

Severity

Cloud Platforms

Resources

Related Standards

Automated

MEDIUM

AWS

Amazon CloudFront

AWS Foundational Best Practice, AWS Well-Architected, CDR, ISO27001, SOC2,NIST CSF, NIST.800-53.r5,

This control checks whether an Amazon CloudFront distribution requires viewers to use HTTPS directly; or whether it uses redirection. The control fails if ViewerProtocolPolicy is set to allow-all for defaultCacheBehavior or for cacheBehaviors.

bottom of page