AWS quicksuite high security documentation change
Summary
Updated TLS requirement from 1.0+ to 1.2+ for API access
Security assessment
Enforcing TLS 1.2+ addresses known vulnerabilities in older TLS versions (e.g., BEAST, POODLE). This change directly improves security posture by requiring modern encryption standards.
Diff
diff --git a/quicksuite/latest/userguide/infrastructure-and-network-access.md b/quicksuite/latest/userguide/infrastructure-and-network-access.md index f56273d63..d0ecf7469 100644 --- a//quicksuite/latest/userguide/infrastructure-and-network-access.md +++ b//quicksuite/latest/userguide/infrastructure-and-network-access.md @@ -25 +25 @@ As a managed service, Quick Suite is protected by the AWS global network securit -If you use AWS published API calls to access Amazon Quick Suite through the network, clients must support Transport Layer Security (TLS) 1.0 or later. We recommend TLS 1.2 or later. Clients must also support cipher suites with perfect forward secrecy (PFS) such as Ephemeral Diffie-Hellman (DHE) or Elliptic Curve Ephemeral Diffie-Hellman (ECDHE). Most modern systems such as Java 7 and later support these modes. +If you use AWS published API calls to access Amazon Quick Suite through the network, clients must support Transport Layer Security (TLS) 1.2 or later. Clients must also support cipher suites with perfect forward secrecy (PFS) such as Ephemeral Diffie-Hellman (DHE) or Elliptic Curve Ephemeral Diffie-Hellman (ECDHE). Most modern systems such as Java 7 and later support these modes.