AWS kms documentation change
Summary
Added algorithm categorization (Preferred vs Acceptable) and updated introductory text
Security assessment
Improves guidance on secure algorithm selection but does not address a specific security incident.
Diff
diff --git a/kms/latest/developerguide/supported-algorithms.md b/kms/latest/developerguide/supported-algorithms.md index be98849cc..0f2c125ba 100644 --- a//kms/latest/developerguide/supported-algorithms.md +++ b//kms/latest/developerguide/supported-algorithms.md @@ -15 +15,8 @@ For more details on cryptographic algorithms deployed in AWS, see [Cryptography -The following tables list recommended cryptographic algorithms and their status. +The following tables summarize the cryptographic algorithms, ciphers, modes, and key sizes that AWS deploys across its services to protect your data. They should not be considered to be an exhaustive list of all cryptography options available in AWS. The algorithms fall into two categories: + + * _Preferred_ algorithms meet the AWS security and performance standards. + + * _Acceptable_ algorithms can be used for compatibility in some applications but are not preferred. + + +