Posted On: Feb 14, 2024
We are pleased to announce Amazon OpenSearch Serverless now offers improved security options for workloads with the support of Transport Layer Security (TLS) version 1.3. OpenSearch Serverless is the serverless option for Amazon OpenSearch Service that makes it simpler for you to run search and analytics workloads without having to think about infrastructure management.
An OpenSearch Serverless collection is a group of OpenSearch indexes that work together to support a specific workload or use case. OpenSearch clients and API can now connect to the collection endpoint using TLS version 1.3. TLS version 1.3 offers enhanced security and performance as compared to older TLS versions. In addition, collection endpoints now supports perfect forward secrecy, which provides additional safeguard against eavesdropping of encrypted data.
Amazon OpenSearch Serverless is protected by the AWS global network security procedures, and offers endpoint security by providing predefined TLS policies that will help customers encrypt their traffic end-to-end by enforcing HTTPS. With this launch, we recommend that customers start using TLS 1.3 for improved security posture. For more information about TLS options, please see the documentation.
The support for larger workloads and collections for OpenSearch Serverless is now available in 8 regions globally: US East (Ohio), US East (N. Virginia), US West (Oregon), Asia Pacific (Singapore), Asia Pacific (Sydney), Asia Pacific (Tokyo), Europe (Frankfurt), and Europe (Ireland). To learn more about OpenSearch Serverless, see the documentation.