File tree Expand file tree Collapse file tree 1 file changed +3
-2
lines changed
Expand file tree Collapse file tree 1 file changed +3
-2
lines changed Original file line number Diff line number Diff line change @@ -278,8 +278,9 @@ class TlsCipherPref(IntEnum):
278278 """Recommended default policy with post-quantum algorithm support. This policy may change over time."""
279279
280280 TLSv1_2_2025_07 = 9
281- """A TLS Cipher Preference ordering that supports TLS 1.2 through TLS 1.3, and does not include CBC cipher suites.
282- It is FIPS-complaint."""
281+ """A TLS Cipher Preference requiring TLS 1.2+ with FIPS compliance and perfect forward secrecy. This security policy
282+ is based on the AWS-CRT-SDK-TLSv1.2-2023 s2n TLS policy with enhanced security restrictions. It supports AES-GCM and
283+ ECDHE cipher suites with ECDSA and RSA-PSS signature schemes, and uses NIST P-256 and P-384 curves only."""
283284
284285 def is_supported (self ):
285286 """Return whether this Cipher Preference is available in the underlying platform's TLS implementation"""
You can’t perform that action at this time.
0 commit comments