search

NASA-IMPACT / nasa-apt

Code and issues relevant to the NASA APT project
Apache License 2.0
6 stars 0 forks source link

MCP: Ensure CloudFront distributions use custom SSL/TLS certificates #889

Closed bwbaker1 closed 2 months ago

bwbaker1 commented 3 months ago

Description

CloudFront distribution should use a custom SSL/TLS certificate. Custom SSL/TLS allow your users to access content by using alternate domain names. You can store custom certificates in AWS Certificate Manager, or in IAM.

Non-conpliant resources: arn:aws:cloudfront::237694371684:distribution/E2HG14BAFN6FZ5 arn:aws:cloudfront::237694371684:distribution/E1COX9APJFTK2X arn:aws:cloudfront::237694371684:distribution/E26TIGKCB37R81

Remediation steps: https://docs.aws.amazon.com/securityhub/latest/userguide/cloudfront-controls.html#cloudfront-7

Acceptance Criteria: