AWS Security ChangesHomeSearch

AWS acm documentation change

Service: acm · 2025-06-28 · Documentation medium

File: acm/latest/userguide/import-certificate-prerequisites.md

Summary

Added 4096-bit RSA to CloudFront's supported key sizes list

Security assessment

Documentation update reflects support for stronger cryptographic algorithms but doesn't indicate remediation of a security issue

Diff

diff --git a/acm/latest/userguide/import-certificate-prerequisites.md b/acm/latest/userguide/import-certificate-prerequisites.md
index 1f97d0a68..e8da1ef2c 100644
--- a//acm/latest/userguide/import-certificate-prerequisites.md
+++ b//acm/latest/userguide/import-certificate-prerequisites.md
@@ -30 +30 @@ Note also the following additional requirements:
-  * ACM [integrated services](https://docs.aws.amazon.com/acm/latest/userguide/acm-services.html) allow only the algorithms and key sizes that they support to be associated with their resources. For example, CloudFront only supports 1024-bit RSA, 2048-bit RSA, 3072-bit RSA, and Elliptic Prime Curve 256-bit keys, while Application Load Balancer supports all of the algorithms available from ACM. For more information, see the documentation for the service you are using.
+  * ACM [integrated services](https://docs.aws.amazon.com/acm/latest/userguide/acm-services.html) allow only the algorithms and key sizes that they support to be associated with their resources. For example, CloudFront only supports 1024-bit RSA, 2048-bit RSA, 3072-bit RSA, 4096-bit RSA, and Elliptic Prime Curve 256-bit keys, while Application Load Balancer supports all of the algorithms available from ACM. For more information, see the documentation for the service you are using.