AWS Security ChangesHomeSearch

AWS kms documentation change

Service: kms · 2025-06-07 · Documentation low

File: kms/latest/developerguide/ct-listkeyrotations.md

Summary

Added includeKeyMaterial parameter to CloudTrail example and updated eventVersion

Security assessment

Documents new parameter for key rotation logging but lacks evidence of addressing a security vulnerability. Enhances audit capability documentation.

Diff

diff --git a/kms/latest/developerguide/ct-listkeyrotations.md b/kms/latest/developerguide/ct-listkeyrotations.md
index b08d89c3d..c13c6d6d6 100644
--- a//kms/latest/developerguide/ct-listkeyrotations.md
+++ b//kms/latest/developerguide/ct-listkeyrotations.md
@@ -11 +11 @@ The following example shows an AWS CloudTrail log entry for the [ListKeyRotation
-        "eventVersion": "1.08",
+        "eventVersion": "1.11",
@@ -20 +20 @@ The following example shows an AWS CloudTrail log entry for the [ListKeyRotation
-        "eventTime": "2024-02-20T19:16:45Z",
+        "eventTime": "2025-05-21T05:42:35Z",
@@ -27 +27,2 @@ The following example shows an AWS CloudTrail log entry for the [ListKeyRotation
-            "keyId": "1234abcd-12ab-34cd-56ef-1234567890ab"
+            "keyId": "1234abcd-12ab-34cd-56ef-1234567890ab",
+            "includeKeyMaterial": "ALL_KEY_MATERIAL"