CloudFront distributions should use trusted key groups for signed URLs and cookies

cloudfront
이 페이지는 아직 한국어로 제공되지 않습니다. 번역 작업 중입니다.
현재 번역 프로젝트에 대한 질문이나 피드백이 있으신 경우 언제든지 연락주시기 바랍니다.

Description

Use trusted key groups for signed URLs and cookies in CloudFront distributions instead of trusted signers (CloudFront key pairs).

Trusted key groups enhance key management by allowing you to use AWS-managed keys and IAM for access control. This rule passes when trusted key groups are configured, and trusted signers are removed.

Remediation

Configure trusted key groups for your CloudFront distribution. For information about choosing a signer and configuring trusted key groups, see AWS Documentation.