AWS apigateway documentation change
Summary
Added new TLS security policy 'SecurityPolicy_TLS13_1_2_FIPS_PFS_PQ_2025_09' with TLS 1.3 and TLS 1.2 cipher suites.
Security assessment
This change adds documentation for a new TLS security policy, which is a security feature enhancement. It provides updated cipher suites for TLS 1.3 and TLS 1.2, improving cryptographic security. No evidence of addressing a specific security vulnerability.
Diff
diff --git a/apigateway/latest/developerguide/apigateway-security-policies-list.md b/apigateway/latest/developerguide/apigateway-security-policies-list.md index 8cd40f435..234137533 100644 --- a//apigateway/latest/developerguide/apigateway-security-policies-list.md +++ b//apigateway/latest/developerguide/apigateway-security-policies-list.md @@ -56,0 +57,17 @@ SecurityPolicy_TLS13_1_3_FIPS_2025_09 | TLS1.3 | +SecurityPolicy_TLS13_1_2_FIPS_PFS_PQ_2025_09 | TLS1.3 TLS1.2 | + +###### TLS1.3 + + * TLS_AES_128_GCM_SHA256 + * TLS_AES_256_GCM_SHA384 + + + +###### TLS1.2 + + * ECDHE-ECDSA-AES128-GCM-SHA256 + * ECDHE-RSA-AES128-GCM-SHA256 + * ECDHE-ECDSA-AES256-GCM-SHA384 + * ECDHE-RSA-AES256-GCM-SHA384 + +