Plugin Title | Secure CloudFront Origin |
Cloud | AWS |
Category | CloudFront |
Description | Detects the use of secure web origins with secure protocols for CloudFront. |
More Info | Traffic passed between the CloudFront edge nodes and the backend resource should be sent over HTTPS with modern protocols for all web-based origins. |
AWS Link | http://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-web.html |
Recommended Action | Ensure that traffic sent between CloudFront and its origin is passed over HTTPS and uses TLSv1.1 or higher. Do not use the match-viewer option. |