AWS elasticloadbalancing documentation change
Summary
Updated default TLS policy to TLS 1.3-compatible version and consolidated policy documentation
Security assessment
Documents adoption of TLS 1.3 support in default policies, enhancing security documentation but without evidence of addressing a specific security incident.
Diff
diff --git a/elasticloadbalancing/latest/network/describe-ssl-policies.md b/elasticloadbalancing/latest/network/describe-ssl-policies.md index 51a04a045..272c07a8b 100644 --- a//elasticloadbalancing/latest/network/describe-ssl-policies.md +++ b//elasticloadbalancing/latest/network/describe-ssl-policies.md @@ -13,3 +13 @@ When you create a TLS listener, you must select a security policy. A security po - * The `ELBSecurityPolicy-TLS13-1-2-2021-06` policy is the default security policy for TLS listeners created using the AWS Management Console. - - * We recommend the `ELBSecurityPolicy-TLS13-1-2-Res-2021-06` security policy, which includes TLS 1.3, and is backwards compatible with TLS 1.2. + * The `ELBSecurityPolicy-TLS13-1-2-Res-2021-06` policy is the default security policy for TLS listeners created using the AWS Management Console. This policy supports TLS 1.3 and is backward compatible with TLS 1.2.