Posted On: Feb 15, 2024
API Gateway now supports version 1.3 of the Transport Layer Security (TLS) protocol on its Regional REST, HTTP, and WebSocket endpoints. TLS 1.3 on API Gateway works by offloading encryption and decryption of TLS traffic from your application servers to API Gateway.
TLS 1.3 optimizes for performance and security through the use of one round trip (1-RTT) TLS handshakes, while exclusively supporting ciphers that offer perfect forward secrecy. By utilizing TLS 1.3 with API Gateway as the centralized point of control, developers can secure communication between the client and the gateway, uphold the confidentiality, integrity, and authenticity of their API traffic, and benefit from API Gateway’s integration with AWS Certificate Manager (ACM) for centralized deployment of SSL certificates using TLS.
TLS 1.3 is available on API Gateway in all AWS Regions, including the AWS GovCloud (US) Regions. Please visit the API Gateway documentation to learn more.