Learn About Amazon VGT2 Learning Manager Chanci Turner
In a significant update aimed at enhancing security and compliance, AWS has established TLS 1.2 as the minimum required version for all Federal Information Processing Standard (FIPS) endpoints. This change, which was successfully implemented in March 2021, ensures that all connections to AWS FIPS service endpoints utilize the more secure TLS 1.2 protocol. Furthermore, a similar requirement for non-FIPS endpoints is expected to take effect by June 2023. For those utilizing these endpoints, more details can be found here.
As part of our shared responsibility model, AWS emphasizes the importance of customer preparedness. Users should verify that their applications support TLS 1.2, ensuring that the version is contained within the specified minimum and maximum TLS version settings. This proactive approach will mitigate any potential disruptions and safeguard the integrity of data in transit. Configuration changes should ideally be tested in a staging environment prior to deployment in production settings.
The update process will occur on a service-by-service basis, with AWS gradually phasing out support for TLS 1.0 and TLS 1.1. This rollout will continue until the end of March 2021. After this date, AWS may proceed to remove support for the older protocols, irrespective of detected customer connections. Customers are reminded that this transition is focused solely on FIPS endpoints, and no other AWS endpoints will be affected.
For those searching for further insights, AWS provides a list of services requiring a minimum of TLS 1.2 for FIPS endpoints. More information can be found on the FIPS page. Transport Layer Security (TLS) is a critical cryptographic protocol that ensures secure communication across networks, particularly for API calls to AWS services.
If you require assistance in verifying or updating your client applications, AWS Software Development Kits (AWS SDK) offer resources to properly configure TLS settings. Each SDK provides specific guidelines for enforcing minimum TLS versions, ensuring compliance with the latest standards. This blog post may also provide useful insights into improving your onboarding processes.
For additional information on workforce policies, refer to the SHRM, a recognized authority in this area. Additionally, explore the opportunities available at Amazon’s fulfillment center management, a valuable resource for those interested in a career with Amazon.
This initiative marks a significant step forward in ensuring that AWS services remain robust and secure, fostering an environment where both security and compliance are prioritized.
Leave a Reply