AWS cloudhsm medium security documentation change
Summary
Added deprecation notice for hsm1.medium FIPS 140-2 certification and migration guidance to hsm2m.medium (FIPS 140-3)
Security assessment
Addresses compliance by informing users about upcoming deprecation of a security-certified HSM type and recommending FIPS 140-3 validated alternative
Diff
diff --git a/cloudhsm/latest/userguide/fips-validation.md b/cloudhsm/latest/userguide/fips-validation.md index f422e8d8b..a18ab7477 100644 --- a//cloudhsm/latest/userguide/fips-validation.md +++ b//cloudhsm/latest/userguide/fips-validation.md @@ -14 +14 @@ Relying on a FIPS-validated HSM can help you meet corporate, contractual, and re -The Federal Information Processing Standard (FIPS) Publication 140-2 is a US government security standard that specifies security requirements for cryptographic modules that protect sensitive information. The type hsm1.medium HSMs provided by AWS CloudHSM are FIPS 140-2 level 3 certified ([Certificate #4218](https://csrc.nist.gov/Projects/Cryptographic-Module-Validation-Program/Certificate/4218)). For more information, refer to [FIPS validation for hardware](https://csrc.nist.gov/Projects/Cryptographic-Module-Validation-Program). +The Federal Information Processing Standard (FIPS) Publication 140-2 is a US government security standard that specifies security requirements for cryptographic modules that protect sensitive information. The AWS CloudHSM hsm1.medium instance type is FIPS 140-2 level 3 certified ([Certificate #4218](https://csrc.nist.gov/Projects/Cryptographic-Module-Validation-Program/Certificate/4218)). On January 4, 2026 the certificate for hsm1.medium moves to the historical list. We recommend customers migrate to hsm2m.medium, which is FIPS 140-3 certified ([Certificate #4703](https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/4703)). For more information, refer to [FIPS validation for hardware](https://csrc.nist.gov/Projects/Cryptographic-Module-Validation-Program).