Data protection

CloudFront distribution allows old SSL/TLS protocols

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

Amazon CloudFront is a high-performance content delivery network (CDN) service that securely delivers data, videos, apps, and APIs to customers around the world with low latency and high transfer speeds. When CloudFront is configured to use HTTPS with origins, you can decide which SSL/TLS protocol to allow for the secure connection. Older TLS protocols are less secure, and it is not recommended to allow them. CloudFront Distribution '{AwsCloudFront}' allows the use of old TLS protocols
  • Recommended Mitigation

    It is recommended to only allow the latest TLS protocol when possible, as older TLS protocols are less secure