AWS kms documentation change
Summary
Added Post Quantum Cryptography (ML-DSA) support documentation
Security assessment
Introduces documentation for quantum-resistant algorithms, which is a proactive security feature enhancement but not a response to an existing vulnerability.
Diff
diff --git a/kms/latest/cryptographic-details/crypto-primitives.md b/kms/latest/cryptographic-details/crypto-primitives.md index 54949fb25..33a4178ba 100644 --- a//kms/latest/cryptographic-details/crypto-primitives.md +++ b//kms/latest/cryptographic-details/crypto-primitives.md @@ -29 +29 @@ AWS KMS supports the use of asymmetric key operations for both encryption and di -AWS KMS supports two types of asymmetric ciphers. +AWS KMS supports three types of asymmetric ciphers. @@ -34,0 +35 @@ AWS KMS supports two types of asymmetric ciphers. + * **Post Quantum Cryptography** \- New public-key cryptographic algorithms that are resistant to quantum computing. Supports the [NIST FIPS 204 Module-Lattice Digital Signature Algorithm (ML-DSA)](https://csrc.nist.gov/pubs/fips/204/final) with ML_DSA_44, ML_DSA_65, and ML_DSA_87 key sizes. @@ -38 +38,0 @@ AWS KMS supports two types of asymmetric ciphers. -AWS KMS also supports [Module-Lattice Digital Signature Algorithm (ML-DSA) for post-quantum cryptographic signatures](https://docs.aws.amazon.com/kms/latest/developerguide/mldsa.html).