Using HTTPS with CloudFront (AWS Guide)

Using HTTPS with CloudFront

https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-https.html

For web distributions, you can configure CloudFront to require that viewers use HTTPS to request your objects, so that connections are encrypted when CloudFront communicates with viewers. You also can configure CloudFront to use HTTPS to get objects from your origin, so that connections are encrypted when CloudFront communicates with your origin.

Requiring HTTPS for Communication Between Viewers and CloudFront
https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-https-viewers-to-cloudfront.html
Requiring HTTPS for Communication Between CloudFront and Your Custom Origin
https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-https-cloudfront-to-custom-origin.html
Requiring HTTPS for Communication Between CloudFront and Your Amazon S3 Origin
https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-https-cloudfront-to-s3-origin.html
Supported Protocols and Ciphers
https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/secure-connections-supported-viewer-protocols-ciphers.html
Charges for HTTPS Connections
You always incur a surcharge for HTTPS requests. For more information, see Amazon CloudFront Pricing.