Posted On: Feb 19, 2024
API Gateway (APIGW) now supports version 1.3 of the Transport layer Security (TLS) protocol on its Regional REST, HTTP and WebSocket endpoints. TLS 1.3 on APIGW works by offloading encryption and decryption of TLS traffic from your application servers to API gateway.
TLS 1.3 optimizes for performance and security through the use of one round trip (1-RTT) TLS handshakes, while exclusively supporting ciphers that offer perfect forward secrecy. By utilizing TLS 1.3 with APIGW as the centralized point of control, developers can secure communication between the client and the gateway, uphold the confidentiality, integrity, and authenticity of their API traffic, and benefit from APIGW’s integration with Amazon Certificate Manager (ACM) for centralized deployment of SSL certificates using TLS.
TLS 1.3 is available on APIGW in Amazon Web Services China (Beijing) Region, operated by Sinnet, and Amazon Web Services China (Ningxia) Region, operated by NWCD. Please visit the APIGW documentation to learn more.