Back to All Checks
Medium CloudFront

CloudFront distributions should not use deprecated SSL protocols between edge locations and custom origins

NISTISO 27001HIPAA

Description

Checks if CloudFront distributions are using deprecated SSL protocols for HTTPS communication between CloudFront edge locations and custom origins.

Remediation

To update the Origin SSL Protocols for a CloudFront distribution, see Requiring HTTPS for communication between CloudFront and your custom origin in the Amazon CloudFront Developer Guide.

Steps

  1. Open the CloudFront console.
  2. Select the distribution to update.
  3. Go to the 'Origins and Origin Groups' tab.
  4. Edit the origin and update the SSL protocols to exclude SSLv3.
  5. Save the changes.

Compliance

NISTISO 27001HIPAA
Start Your Free Security Check