In some cases, customers of the services I create and provide use TLS 1.0/1.1.
https://aws.amazon.com/ko/blogs/security/tls-1-2-required-for-aws-endpoints/
Looking at the contents of the blog above, it seemed to control access below TLS 1.2 from June 28th EST, is this correct to apply?
I think the service operates without much difference before and after the policy change time known above.
In order to test the case of using TLS 1.0/1.1, the test was conducted by connecting to Cloudfront after setting(https://repost.aws/knowledge-center/s3-access-old-tls) it up in S3.
There was a 403 error that I did S3 setup, but the error is not occurring at this point when the policy is changed, so I wonder if it was actually applied.
Summary
- Has access blocking below TLS 1.2 been applied as announced on the blog?
- If access is blocked, does it work differently than setting it on S3?