AWS Security ChangesHomeSearch

AWS bedrock medium security documentation change

Service: bedrock · 2025-03-23 · Security-related medium

File: bedrock/latest/userguide/cross-region-inference.md

Summary

Added clarification about data residency and encryption during cross-region inference

Security assessment

Explicitly states that data remains encrypted in transit and addresses regional data handling concerns, which are security-related assurances

Diff

diff --git a/bedrock/latest/userguide/cross-region-inference.md b/bedrock/latest/userguide/cross-region-inference.md
index 33ad6f647..67a1472a7 100644
--- a/bedrock/latest/userguide/cross-region-inference.md
+++ b/bedrock/latest/userguide/cross-region-inference.md
@@ -8,0 +9,2 @@ Use a cross-region (system-defined) inference profile
+Cross-region inference automatically selects the optimal AWS Region within your geography to process your inference request. This improves customer experience by maximizing available resources and model availability.
+
@@ -49 +51 @@ Note the following information about cross-region inference:
-  * Cross-region inference requests are kept within the regions that are part of the inference profile that was used. For example, a request made with an EU inference profile is kept within EU regions.
+  * Cross-region inference requests are kept within the AWS Regions that are part of the geography where the data originally resides. For example, a request made within the US is kept within the AWS Regions in the US. Although the data remains stored only in the source region, your input prompts and output results might move outside of your source region during cross-region inference. All data will be transmitted encrypted across Amazon’s secure network.