AWS Security ChangesHomeSearch

AWS kms documentation change

Service: kms · 2025-08-22 · Documentation high

File: kms/latest/cryptographic-details/crypto-primitives.md

Summary

Added Post Quantum Cryptography (ML-DSA) support documentation

Security assessment

Introduces documentation for quantum-resistant algorithms, which is a proactive security feature enhancement but not a response to an existing vulnerability.

Diff

diff --git a/kms/latest/cryptographic-details/crypto-primitives.md b/kms/latest/cryptographic-details/crypto-primitives.md
index 54949fb25..33a4178ba 100644
--- a//kms/latest/cryptographic-details/crypto-primitives.md
+++ b//kms/latest/cryptographic-details/crypto-primitives.md
@@ -29 +29 @@ AWS KMS supports the use of asymmetric key operations for both encryption and di
-AWS KMS supports two types of asymmetric ciphers. 
+AWS KMS supports three types of asymmetric ciphers. 
@@ -34,0 +35 @@ AWS KMS supports two types of asymmetric ciphers.
+  * **Post Quantum Cryptography** \- New public-key cryptographic algorithms that are resistant to quantum computing. Supports the [NIST FIPS 204 Module-Lattice Digital Signature Algorithm (ML-DSA)](https://csrc.nist.gov/pubs/fips/204/final) with ML_DSA_44, ML_DSA_65, and ML_DSA_87 key sizes.
@@ -38 +38,0 @@ AWS KMS supports two types of asymmetric ciphers.
-AWS KMS also supports [Module-Lattice Digital Signature Algorithm (ML-DSA) for post-quantum cryptographic signatures](https://docs.aws.amazon.com/kms/latest/developerguide/mldsa.html).