Checks whether TLS 1.3 is enabled for each domain name accelerated by Alibaba Cloud CDN. If so, the evaluation result is Compliant.
Scenarios
TLS security policies are used to ensure the security, integrity, and reliability of data transferred over the Internet. HTTPS communication with higher versions of TLS is more secure.
Risk level
Default risk level: high.
When you apply this rule, you can change the risk level based on your business requirements.
Compliance evaluation logic
If TLS 1.3 is enabled for each domain name accelerated by Alibaba Cloud CDN, the evaluation result is Compliant.
If TLS 1.3 is disabled for a domain name accelerated by Alibaba Cloud CDN, the evaluation result is Non-compliant.
Rule details
Parameter | Description |
Rule name | cdn-domain-tls13-enabled |
Rule identifier | |
Tag | CDN and CDN Domain |
Automatic remediation | Not supported |
Trigger type | Configuration change |
Supported resource type | Domain names |
Input parameter | None |
Non-compliance remediation
Enable TLS 1.3 for each domain name accelerated by Alibaba Cloud CDN. For more information, see Functions for domain name configuration.