CloudFront distribution allows old SSL/TLS protocols

Data protection

CloudFront distribution allows old SSL/TLS protocols

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

AWS Foundational Security Best Practices Controls
CCM-CSA
CCPA
cis_8
CPRA
HITRUST
ISO/IEC 27001
Mitre ATT&CK
mpa
New Zealand Information Security Manual
NIST 800-171
NIST 800-53
PDPA

Description

Amazon CloudFront is a high-performance content delivery network (CDN) service that securely delivers data, videos, apps, and APIs to customers around the world with low latency and high transfer speeds. When CloudFront is configured to use HTTPS with origins, you can decide which SSL/TLS protocol to allow for the secure connection. Older TLS protocols are less secure, and it is not recommended to allow them. CloudFront Distribution '{AwsCloudFront}' allows the use of old TLS protocols

Recommended Mitigation

It is recommended to only allow the latest TLS protocol when possible, as older TLS protocols are less secure

CloudFront distribution allows old SSL/TLS protocols

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS