When will TLS 1.3 be supported for SES Email Receiving?

Question

The [security protocols page](https://docs.aws.amazon.com/ses/latest/dg/security-protocols.html) says:

> The Amazon SES HTTPS endpoint supports TLS 1.2, TLS 1.1, and TLS 1.0

> For STARTTLS connections, Amazon SES supports TLS 1.2, TLS 1.1, TLS 1.0 and SSLv2Hello

and

> For TLS Wrapper connections, Amazon SES supports TLS 1.2, TLS 1.1 and TLS 1.0

I don't believe this is an issue for receiving emails - I expect most clients are happy to negotiate TLS. I was curious because I noticed that `mx.google.com` was negotiating TLS 1.3 (cipher `TLS_AES_128_GCM_SHA256`). According to [Require a secure connection for email](https://support.google.com/a/answer/2520500):

> Google Workspace supports TLS versions 1.0, 1.1, 1.2, and 1.3.

The [supported ciphers](https://support.google.com/a/answer/9795993?hl=en) are also documented.

I've found references to other AWS services supporting TLS 1.3, such as [Network Load Balancer now supports TLS 1.3](https://aws.amazon.com/about-aws/whats-new/2021/10/aws-network-load-balancer-supports-tls-1-3/) in October 2021, along with the benefits of that feature.

Answer

Hello,

Thank you for contacting Re:post.

I have attached your request "TLS 1.3 support for SES Email Receiving" to the internal feature request for SES service teams consideration. However, I don't have an ETA as to if or when this may be implemented, but any new updates on this and other features will be published on the following links:

New features - https://aws.amazon.com/new/

Jeff Barr's Blog - https://aws.amazon.com/blogs/aws/

Subscribe to our weekly newsletter for AWS announcements - https://aws.amazon.com/s/dm/landing-page/subscribe-to-aws-release-notes-blog/

Let us know if you have any questions.

Answer

Hello,

Is there any news about TLS 1.3 for SES ? in documentation it is still specified that the max supported version is 1.2.
Is the documentation up to date ?

Thanks !

When will TLS 1.3 be supported for SES Email Receiving?

Relevant content