CloudFront distributions that utilize HTTP POST Methods should have field-level encryption enabled

문서 > Datadog 보안 > OOTB Rules > CloudFront distributions that utilize HTTP POST Methods should have field-level encryption enabled

이 페이지는 아직 한국어로 제공되지 않으며 번역 작업 중입니다. 번역에 관한 질문이나 의견이 있으시면 언제든지 저희에게 연락해 주십시오.

Description

This check verifies that AWS CloudFront field-level encryption is enabled when using the POST method in the CloudFront Distrubution. If the distribution does not employ HTTP POST Methods, this rule will be skipped for the associated CloudFront Distribution. Failure will occur if the distribution is utilizing POST within the default cache behavior or cache behavior without enabling the associated field-level encryption.

Field-level encryption ensures sensitive data contained within fields, such as identification and credit card numbers, is protected across your services and applications.

Remediation

For instructions on how to update or enable field-level encryption, please consult the Using field-level encryption to help protect sensitive data in the AWS CloudFront developers guide.