CloudFront distribution should have a security policy requiring a secure version of TLS

このページは日本語には対応しておりません。随時翻訳に取り組んでいます。翻訳に関してご質問やご意見ございましたら、お気軽にご連絡ください。

Description

Ensure that AWS CloudFront distributions are configured with a security policy that mandates the use of TLS v1.2 or newer. Utilizing TLS v1.2 as the baseline protocol enhances security by providing robust encryption methods, thereby strengthening the protection of your application’s data in transit.

Remediation

To configure or update the TLS version for an AWS CloudFront distribution, please consult the AWS documentation detailing the supported protocols and ciphers between viewers and CloudFront. This will guide you in selecting an appropriate security policy that enforces TLS v1.2 or higher, ensuring your distribution meets contemporary security standards.

For detailed instructions, refer to the AWS CloudFront Documentation on Supported Protocols and Ciphers.