Data protection

CloudFront distributions AWS WAF is disabled

Description

Amazon CloudFront is a high-performance content delivery network (CDN) service that securely delivers data, videos, apps, and APIs to customers around the world with low latency and high transfer speeds. The Amazon CloudFront distribution can be associated with either AWS WAF or AWS WAFv2. AWS WAF is a web application firewall that helps protect web applications and APIs from attacks. We have found that CloudFront Distribution {AwsCloudFront} association with either AWS WAF or AWS WAFv2 is disabled
  • Recommended Mitigation

    It is recommended to consider to enable AWS WAF or AWS WAFv2 association for CloudFront distribution {AwsCloudFront}. AWS WAF is a web application firewall that aids in the protection of web applications and APIs from attacks. It enables you to establish a collection of rules, known as a web access control list (web ACL), that allow, block, or count web requests based on customized web security rules and conditions. The association of CloudFront distribution {AwsCloudFront} with an AWS WAF web ACL will help protect it from malicious attacks. For more information: <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-web-awswaf.html," target="_blank" rel="noopener noreferrer">https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-web-awswaf.html,</a> <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-web-values-specify.html#DownloadDistValuesWAFWebACL" target="_blank" rel="noopener noreferrer">https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-web-values-specify.html#DownloadDistValuesWAFWebACL</a>