AWS Security ChangesHomeSearch

AWS kms medium security documentation change

Service: kms · 2025-06-16 · Security-related medium

File: kms/latest/developerguide/symm-asymm-choose-key-spec.md

Summary

Added ML-DSA key specs for post-quantum cryptography and reorganized HMAC key specs section

Security assessment

The addition of ML-DSA key specs introduces support for post-quantum cryptography algorithms (NIST FIPS 204), which addresses emerging security threats from quantum computing. This is a proactive security enhancement to protect against future quantum attacks.

Diff

diff --git a/kms/latest/developerguide/symm-asymm-choose-key-spec.md b/kms/latest/developerguide/symm-asymm-choose-key-spec.md
index 7112ddf7b..086748a61 100644
--- a//kms/latest/developerguide/symm-asymm-choose-key-spec.md
+++ b//kms/latest/developerguide/symm-asymm-choose-key-spec.md
@@ -5 +5 @@
-SYMMETRIC_DEFAULT key specRSA key specsElliptic curve key specsSM2 key spec (China Regions only)Key specs for HMAC KMS keys
+SYMMETRIC_DEFAULT key specRSA key specsElliptic curve key specsKey specs for HMAC KMS keysML-DSA key specsSM2 key spec (China Regions only)
@@ -80,0 +81,12 @@ HMAC key specs
+ML-DSA key specs
+    
+
+  * ML-DSA-44
+
+  * ML-DSA-65
+
+  * ML-DSA-87
+
+
+
+
@@ -206,0 +219,32 @@ ECC_SECG_P256K1 | ECDSA_SHA_256 | NIST FIPS 186-4, Section 6.4, ECDSA signature
+## Key specs for HMAC KMS keys
+
+AWS KMS supports symmetric HMAC keys in varying lengths. The key spec that you select can depend on your security, regulatory, or business requirements. The length of the key determines the MAC algorithm that is used in [GenerateMac](https://docs.aws.amazon.com/kms/latest/APIReference/API_GenerateMac.html) and [VerifyMac](https://docs.aws.amazon.com/kms/latest/APIReference/API_VerifyMac.html) operations. In general, longer keys are more secure. Use the longest key that is practical for your use case.
+
+HMAC key spec | MAC algorithm  
+---|---  
+HMAC_224 | HMAC_SHA_224  
+HMAC_256 | HMAC_SHA_256  
+HMAC_384 | HMAC_SHA_384  
+HMAC_512 | HMAC_SHA_512  
+  
+## ML-DSA key specs
+
+An ML-DSA key is a cryptographic key used in the Module-Lattice-Based Digital Signature Algorithm (ML-DSA), which is designed for post-quantum cryptography. This algorithm is part of the NIST (National Institute of Standards and Technology) standardization effort, specifically outlined in [Federal Information Processing Standards (FIPS) 204](https://csrc.nist.gov/pubs/fips/204/final).
+
+ML-DSA keys are used in a public-private key pair system. The private key is used for signing data, while the public key is used for verifying the signature. This system ensures the authenticity, integrity, and non-repudiation of digital messages or documents, even in the face of potential quantum computer threats.
+
+When you create a key with the ML-DSA key spec, AWS KMS creates an asymmetric KMS key with a ML-DSA key pair for signing and verification. The private key that generates signatures never leaves AWS KMS unencrypted. You can use the public key to [verify signatures](https://docs.aws.amazon.com/kms/latest/APIReference/API_Verify.html) within AWS KMS, or [download the public key](https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys-get-public-key-and-token.html) for use outside of AWS KMS.
+
+AWS KMS supports the following ML-DSA key specs for asymmetric KMS keys:
+
+  * ML-DSA-44
+
+  * ML-DSA-65
+
+  * ML-DSA-87
+
+
+
+
+AWS KMS supports the ML_DSA_SHAKE_256 signing algorithm for all of the ML-DSA key specs.
+
@@ -230,11 +273,0 @@ SM2DSA is an elliptic curve based signing algorithm defined by OSCCA in GM/T 000
-## Key specs for HMAC KMS keys
-
-AWS KMS supports symmetric HMAC keys in varying lengths. The key spec that you select can depend on your security, regulatory, or business requirements. The length of the key determines the MAC algorithm that is used in [GenerateMac](https://docs.aws.amazon.com/kms/latest/APIReference/API_GenerateMac.html) and [VerifyMac](https://docs.aws.amazon.com/kms/latest/APIReference/API_VerifyMac.html) operations. In general, longer keys are more secure. Use the longest key that is practical for your use case.
-
-HMAC key spec | MAC algorithm  
----|---  
-HMAC_224 | HMAC_SHA_224  
-HMAC_256 | HMAC_SHA_256  
-HMAC_384 | HMAC_SHA_384  
-HMAC_512 | HMAC_SHA_512  
-