security policy: offer modern AEAD-only security policies

### Problem:

s2n-tls should off a FIPS and GENERAL security policy that satisfy the following requirements
- hybridized PQ exchange
- only AEAD ciphers
- TLS 1.2 & TLS 1.3
- no SHA1 or SHA224 signatures

Note that the FIPS variant should be the same, except it won't support x25519 or CHACHAPOLY.

### Need By Date:

November 1st.

### Solution:
We should offer security policies that satisfy those requirements.

I did check through all of our security policies, but it's admittedly hard to audit by hand.


[//]: #  (NOTE: If you believe this might be a security issue, please email aws-security@amazon.com instead of creating a GitHub issue. For more details, see the AWS Vulnerability Reporting Guide: https://aws.amazon.com/security/vulnerability-reporting/ )


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

security policy: offer modern AEAD-only security policies #5529

Problem:

Need By Date:

Solution:

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

security policy: offer modern AEAD-only security policies #5529

Description

Problem:

Need By Date:

Solution:

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions