Posted On: May 1, 2023
AWS IoT Core, a managed cloud service that lets customers securely connect Internet of Things (IoT) devices the cloud and manage them at scale, announces support for Transport Layer Security (TLS) 1.3 through Configurable Endpoints. TLS 1.3 provides two major improvements in security and performance - it removes legacy features and older cipher suites in previous versions of TLS, and offers better performance through a simplified handshake process. With this launch, AWS IoT customers can also use TLS 1.3 in AWS IoT Core Device Advisor, a fully managed test capability to help developers test their IoT devices for reliable and secure connectivity with AWS IoT Core.
With this launch, we are expanding the Configurable Endpoints feature, launched on 3/25/2021, so that customers can configure desired TLS version(s) to establish secure connections to AWS IoT Core and meet specific security compliance requirements. The feature is backwards compatible, enabling IoT developers to connect both TLS 1.2 and TLS 1.3 capable devices to their respective endpoints. To configure TLS 1.3, customers can can navigate to the ‘settings’ section within the AWS IoT Console or use the CreateDomainConfiguration API to select the desired TLS policy.
TLS 1.3 is available in all AWS regions where AWS IoT Core is present, except AWS GovCloud (US) and China regions. Visit the developer guide to learn more about this feature. For more information about AWS IoT Core, visit the product page.