AWS Security ChangesHomeSearch

AWS apigateway documentation change

Service: apigateway · 2026-04-10 · Documentation low

File: apigateway/latest/developerguide/apigateway-security-policies-list.md

Summary

Added new TLS security policy 'SecurityPolicy_TLS13_1_2_FIPS_PFS_PQ_2025_09' with TLS 1.3 and TLS 1.2 cipher suites.

Security assessment

This change adds documentation for a new TLS security policy, which is a security feature enhancement. It provides updated cipher suites for TLS 1.3 and TLS 1.2, improving cryptographic security. No evidence of addressing a specific security vulnerability.

Diff

diff --git a/apigateway/latest/developerguide/apigateway-security-policies-list.md b/apigateway/latest/developerguide/apigateway-security-policies-list.md
index 8cd40f435..234137533 100644
--- a//apigateway/latest/developerguide/apigateway-security-policies-list.md
+++ b//apigateway/latest/developerguide/apigateway-security-policies-list.md
@@ -56,0 +57,17 @@ SecurityPolicy_TLS13_1_3_FIPS_2025_09 | TLS1.3 |
+SecurityPolicy_TLS13_1_2_FIPS_PFS_PQ_2025_09 | TLS1.3 TLS1.2 | 
+
+###### TLS1.3
+
+  * TLS_AES_128_GCM_SHA256
+  * TLS_AES_256_GCM_SHA384
+
+
+
+###### TLS1.2
+
+  * ECDHE-ECDSA-AES128-GCM-SHA256
+  * ECDHE-RSA-AES128-GCM-SHA256
+  * ECDHE-ECDSA-AES256-GCM-SHA384
+  * ECDHE-RSA-AES256-GCM-SHA384
+
+