AWS AmazonRDS high security documentation change
Summary
Upgraded SSL/TLS configuration: Changed SSL_VERSION from 1.0 to 1.2 and cipher suite from SSL_RSA_WITH_AES_256_CBC_SHA to SSL_RSA_WITH_AES_256_CBC_SHA256.
Security assessment
Explicit upgrade from deprecated TLS 1.0 to secure TLS 1.2 and stronger cipher suite. Addresses known vulnerabilities in older TLS versions and weak ciphers (e.g., POODLE, BEAST). Directly impacts transport layer security.
Diff
diff --git a/AmazonRDS/latest/UserGuide/Appendix.Oracle.Options.SSL.ClientConfiguration.md b/AmazonRDS/latest/UserGuide/Appendix.Oracle.Options.SSL.ClientConfiguration.md index 8dda811aa..966014220 100644 --- a//AmazonRDS/latest/UserGuide/Appendix.Oracle.Options.SSL.ClientConfiguration.md +++ b//AmazonRDS/latest/UserGuide/Appendix.Oracle.Options.SSL.ClientConfiguration.md @@ -66,2 +66,2 @@ To communicate with entities over a TLS secured connection, Oracle requires a wa - SSL_VERSION = 1.0 - SSL_CIPHER_SUITES = (SSL_RSA_WITH_AES_256_CBC_SHA) + SSL_VERSION = 1.2 + SSL_CIPHER_SUITES = (SSL_RSA_WITH_AES_256_CBC_SHA256) @@ -72 +72 @@ To communicate with entities over a TLS secured connection, Oracle requires a wa -You can set `SSL_VERSION` to a higher value if your DB instance supports it. +You can set `SSL_VERSION` to a different value if your DB instance supports it.