In a March 2020 blog post, we told you about function Amazon Web Services (AWS) had been undertaking to update our AWS Federal Information Processing Standard (FIPS) endpoints to at the least Transport Layer Safety (TLS) 1.2 across all AWS Regions. Nowadays, we’re pleased to announce that over 40 solutions have been updated and today require TLS 1.2:

These services no assistance making use of TLS 1 longer.0 or TLS 1.1 on the FIPS endpoints. To assist you satisfy your compliance demands, we have been updating all AWS FIPS endpoints to at the least TLS 1.2 across all Regions. We shall continue steadily to update our services to aid only one 1 TLS. 2 or on AWS FIPS endpoints later on, which you can check up on the AWS FIPS webpage. This modification doesn’t influence non-FIPS AWS endpoints.

When a connection is manufactured by you from your own customer application to an AWS assistance endpoint, your client provides its TLS TLS and minimal maximum versions. The AWS service endpoint will choose the optimum version offered always.

What is certainly TLS?

TLS is really a cryptographic protocol made to provide secure communication across a computer network. API phone calls to AWS providers are secured making use of TLS.

What is normally FIPS 140-2?

The FIPS 140-2 is really a US and Canadian government standard that specifies the security requirements for cryptographic modules that protect sensitive information.

What are usually AWS FIPS endpoints?

All AWS services present TLS 1.2 encrypted endpoints which you can use for all API phone calls. Some AWS services furthermore offer FIPS 140-2 endpoints for customers that need to make use of FIPS validated cryptographic libraries for connecting to AWS services.

Why are usually we upgrading to TLS 1.2?

Our upgrade to TLS 1.2 across all Areas reflects our ongoing dedication to help customers match their compliance needs.

Is more assistance open to help verify or upgrade client applications there?

If you’re utilizing an AWS software growth package (AWS SDK), you will find information about how exactly to properly configure the minimal and optimum TLS versions for the clients in the next AWS SDK topics:

You can even visit Tools to create on AWS and search by programming language to get the relevant SDK. AWS Assistance tiers cover manufacturing and development problems for aws services and products, and also other key stack elements. AWS Assistance doesn’t include code advancement for client applications.

When you have any relevant queries or issues, you may start a fresh thread using one of the AWS forums, or get in touch with AWS Support or your technical accounts manager (TAM).

Should you have feedback concerning this post, submit remarks in the Comments section below.

Want a lot more AWS Security how-to articles, news, and show announcements? Stick to us on Twitter.