AWS Support announces two new AWS Trusted Advisor checks that offer best practices for using CloudFront, focusing on security enhancement and performance improvement:
- CloudFront Header Forwarding and Cache Hit Ratio (Performance category): Checks for HTTP request headers that CloudFront forwards to the origin that might significantly reduce the cache hit ratio and increase the load on the origin.
- CloudFront Custom SSL Certificates in the IAM Certificate Store (Security category): Checks for SSL certificates for CloudFront alternate domain names in the IAM certificate store that are expired, will soon expire, use outdated encryption, or are not configured correctly for the distribution.
For more information on Trusted Advisor and descriptions of all 43 checks, visit AWS Trusted Advisor.
Originally Posted: AWS Trusted Advisor adds two new checks for CloudFront
- #ELB permissions, support for #IAM in #AWS is going strong (June 10, 2014)">With new #ELB permissions, support for #IAM in #AWS is going strong (0)
- #AWS account? Here are some resources. (July 2, 2014)">Want help with securing your #AWS account? Here are some resources. (0)
- #AWS S3 Standard-IA (October 7, 2015)">Veritas Upgrades NetBackup & Now Supports #AWS S3 Standard-IA (0)
- #AWS #IAM Feature – Access Key Last Use Info (May 14, 2015)">Useful New #AWS #IAM Feature – Access Key Last Use Info (0)
- #AWS Best Practices for DDoS Resiliency (August 16, 2016)">Updated Whitepaper Available: #AWS Best Practices for DDoS Resiliency (0)