AWS AppSync is a fully managed service that simplifies the development and deployment of GraphQL APIs. Starting today, AWS AppSync automatically enables encryption at-rest and in-transit for all new API caching configurations. This security enhancement applies to newly created caches, while existing caches maintain their current encryption settings. AWS AppSync SDKs have been updated to enforce encryption for new caches, ignoring any manual encryption configuration attributes.
This default encryption strengthens your GraphQL APIs’ security posture by ensuring comprehensive protection of cached data without requiring additional configuration. The change aligns with AWS security best practices and simplifies the implementation of secure caching for your APIs. Customers can continue using their existing cache configurations without disruption while benefiting from enhanced security for new deployments.
This update is available in all AWS Regions where AWS AppSync is offered. To learn more about AWS AppSync caching, visit our documentation or explore the full range of AWS AppSync features in our Developer Guide.
Source:: Amazon AWS