AWS AmazonS3 documentation change
Summary
Removed detailed encryption section and added reference to dedicated encryption guide. Changed section header from 'Access management' to 'Encryption'.
Security assessment
The change restructures encryption documentation but does not indicate a security vulnerability. The addition of encryption guidance and removal of SSE-KMS limitation note suggests expanded security feature support rather than addressing a specific vulnerability.
Diff
diff --git a/AmazonS3/latest/userguide/s3-tables-security-overview.md b/AmazonS3/latest/userguide/s3-tables-security-overview.md index 13005a5ee..7f7136863 100644 --- a//AmazonS3/latest/userguide/s3-tables-security-overview.md +++ b//AmazonS3/latest/userguide/s3-tables-security-overview.md @@ -23,12 +22,0 @@ You can use Amazon S3 Tables in Service Control Policies (SCPs) to manage permis -###### Encryption - -Encryption refers to protecting data while it's in transit (as it travels to and from Amazon S3) and at rest. - -**Encryption at rest** – Amazon S3 table buckets have bucket encryption enabled by default. This encryption applies to all tables in your table buckets and comes at no cost to you. - -**Encryption in transit** – S3 Tables always protect data in transit using Transport Layer Security (1.2 and above) through HTTPS. - -###### Note - -S3 Tables doesn't support server-side encryption with AWS Key Management Service (SSE-KMS). - @@ -36,0 +25,2 @@ S3 Tables doesn't support server-side encryption with AWS Key Management Service + * [Protecting S3 table data with encryption](./s3-tables-encryption.html) + @@ -54 +44 @@ AWS Regions, endpoints, and quotas -Access management +Encryption