AWS AWSCloudFormation documentation change
Summary
Added TlsPolicy property with TLS policy options (REQUIRED, OPTIONAL, FIPS) and added MTLS as allowed value for Status property
Security assessment
The change adds TLS policy configuration (including FIPS compliance) and mutual TLS (MTLS) as a status option. These are security enhancements for email ingress points but don't address a specific security vulnerability. The FIPS option indicates compliance with cryptographic standards.
Diff
diff --git a/AWSCloudFormation/latest/TemplateReference/aws-resource-ses-mailmanageringresspoint.md b/AWSCloudFormation/latest/TemplateReference/aws-resource-ses-mailmanageringresspoint.md index ca6bf8bc4..346a33c5f 100644 --- a//AWSCloudFormation/latest/TemplateReference/aws-resource-ses-mailmanageringresspoint.md +++ b//AWSCloudFormation/latest/TemplateReference/aws-resource-ses-mailmanageringresspoint.md @@ -26,0 +27 @@ To declare this entity in your CloudFormation template, use the following syntax + "TlsPolicy" : String, @@ -46,0 +48 @@ To declare this entity in your CloudFormation template, use the following syntax + TlsPolicy: String @@ -134,0 +137,15 @@ _Required_ : No +`TlsPolicy` + + +The text of the policy in JSON format. The policy cannot exceed 4 KB. + +For information about the syntax of sending authorization policies, see the [Amazon SES Developer Guide](https://docs.aws.amazon.com/ses/latest/DeveloperGuide/sending-authorization.html). + +_Required_ : No + + _Type_ : String + + _Allowed values_ : `REQUIRED | OPTIONAL | FIPS` + + _Update requires_ : [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) + @@ -159 +176 @@ _Required_ : Yes - _Allowed values_ : `OPEN | AUTH` + _Allowed values_ : `OPEN | AUTH | MTLS`