AWS Security ChangesHomeSearch

AWS aws-backup documentation change

Service: aws-backup · 2025-05-31 · Documentation medium

File: aws-backup/latest/devguide/logicallyairgappedvault.md

Summary

Removed section about EC2 restore encryption differences in air-gapped vaults

Security assessment

The removed content described encryption behavior differences but its deletion doesn't indicate resolution of a security issue. This appears to be documentation cleanup rather than security remediation.

Diff

diff --git a/aws-backup/latest/devguide/logicallyairgappedvault.md b/aws-backup/latest/devguide/logicallyairgappedvault.md
index 6abd5e409..d7df5343b 100644
--- a//aws-backup/latest/devguide/logicallyairgappedvault.md
+++ b//aws-backup/latest/devguide/logicallyairgappedvault.md
@@ -442,8 +441,0 @@ A sample CLI input can include the following command and parameters:
-###### Important
-
-**Amazon EC2 restore encryption**
-
-Recovery points of EC2 AMIs stored in a logically air-gapped vault you choose to include in a restore job are restored with their EBS snapshots. These snapshots are restored into volumes that are automatically encrypted with the Amazon managed key linked to the account that runs the restore job.
-
-This differs from backups of EC2 AMIs stored in standard backup vaults, where users can restore AMIs through either the EC2 console or CLI and can specify their own KMS keys for volume encryption for a restore job.
-