CloudFront Distributions Should Not Use Insecure SSL Protocols

Back

More Info:

Your AWS Cloudfront Content Delivery Network distributions should not be using insecure SSL protocols (i.e. SSLv3) for HTTPS communication between CloudFront edge locations and your custom origins.

Risk Level

Medium

Address

Security

Compliance Standards

PCIDSS, HIPAA, APRA, MAS, NIST

Additional Reading:

https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-https-cloudfront-to-custom-origin.html

More Info:​

Risk Level​

Address​

Compliance Standards​

Additional Reading:​

More Info:

Risk Level

Address

Compliance Standards

Additional Reading: