AWS Security ChangesHomeSearch

AWS AmazonCloudFront documentation change

Service: AmazonCloudFront · 2025-10-13 · Documentation low

File: AmazonCloudFront/latest/DeveloperGuide/standard-logging.md

Summary

Added requirement to specify Firehose delivery stream in us-east-1 Region for log delivery

Security assessment

The change clarifies regional requirements for log delivery configuration but does not address a security vulnerability or weakness. It improves operational accuracy rather than addressing security risks.

Diff

diff --git a/AmazonCloudFront/latest/DeveloperGuide/standard-logging.md b/AmazonCloudFront/latest/DeveloperGuide/standard-logging.md
index 62998421c..700fcf058 100644
--- a//AmazonCloudFront/latest/DeveloperGuide/standard-logging.md
+++ b//AmazonCloudFront/latest/DeveloperGuide/standard-logging.md
@@ -591 +591 @@ After you create your log group, you must have the required permissions to allow
-To send logs to Firehose, create or use an existing Firehose delivery stream. 
+To send logs to Firehose, create or use an existing Firehose delivery stream. Then, specify the Firehose delivery stream as the log delivery destination. You must specify a Firehose delivery stream in the US East (N. Virginia) us-east-1 Region.