AWS Security ChangesHomeSearch

AWS elasticloadbalancing documentation change

Service: elasticloadbalancing · 2025-05-25 · Documentation medium

File: elasticloadbalancing/latest/network/describe-ssl-policies.md

Summary

Updated default TLS policy to TLS 1.3-compatible version and consolidated policy documentation

Security assessment

Documents adoption of TLS 1.3 support in default policies, enhancing security documentation but without evidence of addressing a specific security incident.

Diff

diff --git a/elasticloadbalancing/latest/network/describe-ssl-policies.md b/elasticloadbalancing/latest/network/describe-ssl-policies.md
index 51a04a045..272c07a8b 100644
--- a//elasticloadbalancing/latest/network/describe-ssl-policies.md
+++ b//elasticloadbalancing/latest/network/describe-ssl-policies.md
@@ -13,3 +13 @@ When you create a TLS listener, you must select a security policy. A security po
-  * The `ELBSecurityPolicy-TLS13-1-2-2021-06` policy is the default security policy for TLS listeners created using the AWS Management Console.
-
-    * We recommend the `ELBSecurityPolicy-TLS13-1-2-Res-2021-06` security policy, which includes TLS 1.3, and is backwards compatible with TLS 1.2.
+  * The `ELBSecurityPolicy-TLS13-1-2-Res-2021-06` policy is the default security policy for TLS listeners created using the AWS Management Console. This policy supports TLS 1.3 and is backward compatible with TLS 1.2.