diff --git a/aiohttp_security/api.py b/aiohttp_security/api.py
index b685f0e..ea18429 100644
--- a/aiohttp_security/api.py
+++ b/aiohttp_security/api.py
@@ -5,8 +5,8 @@
 
 from aiohttp_security.abc import AbstractAuthorizationPolicy, AbstractIdentityPolicy
 
-IDENTITY_KEY = 'aiohttp_security_identity_policy'
-AUTZ_KEY = 'aiohttp_security_autz_policy'
+IDENTITY_KEY = web.AppKey("IDENTITY_KEY", AbstractIdentityPolicy)
+AUTZ_KEY = web.AppKey("AUTZ_KEY", AbstractAuthorizationPolicy)
 
 # _AIP/_AAP are shorthand for Optional[policy] when we retrieve from request.
 _AAP = Optional[AbstractAuthorizationPolicy]
diff --git a/requirements.txt b/requirements.txt
index 7634968..8252295 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,5 +1,5 @@
 -e .
-aiohttp==3.8.6
+aiohttp==3.9.0
 aiohttp-session==2.12.0
 async-timeout==4.0.3
 coverage==7.3.2
diff --git a/setup.py b/setup.py
index 24a1354..8490290 100644
--- a/setup.py
+++ b/setup.py
@@ -16,7 +16,7 @@ def read(f):
     return open(os.path.join(os.path.dirname(__file__), f)).read().strip()
 
 
-install_requires = ['aiohttp>=3.2.0']
+install_requires = ["aiohttp>=3.9"]
 tests_require = install_requires + ['pytest']
 extras_require = {'session': 'aiohttp-session'}