AWS Security ChangesHomeSearch

AWS cloudhsm medium security documentation change

Service: cloudhsm · 2025-10-16 · Security-related medium

File: cloudhsm/latest/userguide/fips-validation.md

Summary

Added deprecation notice for hsm1.medium FIPS 140-2 certification and migration guidance to hsm2m.medium (FIPS 140-3)

Security assessment

Addresses compliance by informing users about upcoming deprecation of a security-certified HSM type and recommending FIPS 140-3 validated alternative

Diff

diff --git a/cloudhsm/latest/userguide/fips-validation.md b/cloudhsm/latest/userguide/fips-validation.md
index f422e8d8b..a18ab7477 100644
--- a//cloudhsm/latest/userguide/fips-validation.md
+++ b//cloudhsm/latest/userguide/fips-validation.md
@@ -14 +14 @@ Relying on a FIPS-validated HSM can help you meet corporate, contractual, and re
-The Federal Information Processing Standard (FIPS) Publication 140-2 is a US government security standard that specifies security requirements for cryptographic modules that protect sensitive information. The type hsm1.medium HSMs provided by AWS CloudHSM are FIPS 140-2 level 3 certified ([Certificate #4218](https://csrc.nist.gov/Projects/Cryptographic-Module-Validation-Program/Certificate/4218)). For more information, refer to [FIPS validation for hardware](https://csrc.nist.gov/Projects/Cryptographic-Module-Validation-Program).
+The Federal Information Processing Standard (FIPS) Publication 140-2 is a US government security standard that specifies security requirements for cryptographic modules that protect sensitive information. The AWS CloudHSM hsm1.medium instance type is FIPS 140-2 level 3 certified ([Certificate #4218](https://csrc.nist.gov/Projects/Cryptographic-Module-Validation-Program/Certificate/4218)). On January 4, 2026 the certificate for hsm1.medium moves to the historical list. We recommend customers migrate to hsm2m.medium, which is FIPS 140-3 certified ([Certificate #4703](https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/4703)). For more information, refer to [FIPS validation for hardware](https://csrc.nist.gov/Projects/Cryptographic-Module-Validation-Program).