CloudFront Distribution Is Not Using WAF

Overview

Check whether CloudFront distributions are utilizing AWS WAF. The presence of potential attacks or misuse of the service becomes more pronounced, especially for internet-facing applications. Employ AWS WAF to shield your service against prevalent web exploits, which have the potential to impact availability and performance, compromise security, or lead to resource over-consumption.

Vendor

AWS

Cloud Service

CloudFront

CSMM v1 APP-03.3, CloudFront.6

References

https://docs.aws.amazon.com/cloudfront/latest/APIReference/API_DistributionConfig.html, https://docs.aws.amazon.com/waf/latest/developerguide/cloudfront-features.html

Severity

Item Types

AWS::CloudFront::Distribution

Overview​

Vendor​

Cloud Service​

Related Controls​

References​

Severity​

Item Types​