AWS amazondynamodb medium security documentation change
Summary
Documented deprecation of AmazonDynamoDBFullAccess policy and introduction of scoped-down v2 policy
Security assessment
Addresses security through least privilege by replacing a broad policy with a scoped-down alternative. Mitigates risks from excessive permissions in the original policy.
Diff
diff --git a/amazondynamodb/latest/developerguide/DocumentHistory.md b/amazondynamodb/latest/developerguide/DocumentHistory.md index d2bee4c78..979fbe7f1 100644 --- a//amazondynamodb/latest/developerguide/DocumentHistory.md +++ b//amazondynamodb/latest/developerguide/DocumentHistory.md @@ -12,0 +13,2 @@ Change| Description| Date +Added support for r7i instance types in DAX| Expanded instance type options for DAX to provide more flexibility in performance and capacity. For more details about the new r7i instance types and their capabilities, see [ DAX encryption at rest](https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/DAXEncryptionAtRest.html.html).| April 29, 2025 +New scoped-down full access policy AmazonDynamoDBFullAccess_v2 replaces AmazonDynamoDBFullAccess.| Effective **April 25, 2025** , DynamoDB has deprecated the `AmazonDynamoDBFullAccess` policy and replaced it with a scoped-down policy named `AmazonDynamoDBFullAccess_v2`. For more information, see [AWS managed policy: AmazonDynamoDBFullAccess_v2](https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/ddb-security-iam.awsmanpol.html#ddb-security-iam.awsmanpol.fullaccesspolicy-v2).| April 28, 2025