Posted On: Nov 16, 2023

Amazon IoT Core, a managed cloud service that lets customers securely connect Internet of Things (IoT) devices the cloud and manage them at scale, announces support for Transport Layer Security (TLS) 1.3 through Configurable Endpoints. TLS 1.3 provides two major improvements in security and performance - it removes legacy features and older cipher suites in previous versions of TLS, and offers better performance through a simplified handshake process.

With this launch, we are expanding the Configurable Endpoints feature, launched on 11/3/2021, so that customers can configure desired TLS version(s) to establish secure connections to Amazon IoT Core and meet specific security compliance requirements. The feature is backwards compatible, enabling IoT developers to connect both TLS 1.2 and TLS 1.3 capable devices to their respective endpoints. To configure TLS 1.3, customers can navigate to the ‘settings’ section within the Amazon IoT Console or use the CreateDomainConfiguration API to select the desired TLS policy.

TLS 1.3 is available in all commercial Amazon Web Services regions where Amazon IoT Core is present, including Amazon Web Services China (Beijing) region, operated by Sinnet and Amazon Web Services China (Ningxia) region, operated by NWCD. Visit the developer guide to learn more about this feature.