AWS securityhub documentation change
Summary
Updated service name to 'Amazon OpenSearch Service', condensed text, and rephrased control rationale for three-node requirement
Security assessment
Changes are primarily branding and clarity improvements. The three-node control relates to availability/reliability rather than direct security vulnerabilities, with no evidence of addressing a specific security flaw.
Diff
diff --git a/securityhub/latest/userguide/opensearch-controls.md b/securityhub/latest/userguide/opensearch-controls.md index 65489839b..c6acf7206 100644 --- a//securityhub/latest/userguide/opensearch-controls.md +++ b//securityhub/latest/userguide/opensearch-controls.md @@ -7 +7 @@ -# Security Hub controls for OpenSearch Service +# Security Hub controls for Amazon OpenSearch Service @@ -9,3 +9 @@ -These AWS Security Hub controls evaluate the Amazon OpenSearch Service (OpenSearch Service) service and resources. - -These controls may not be available in all AWS Regions. For more information, see [Availability of controls by Region](./securityhub-regions.html#securityhub-regions-control-support). +These AWS Security Hub controls evaluate the Amazon OpenSearch Service (OpenSearch Service) service and resources. The controls might not be available in all AWS Regions. For more information, see [Availability of controls by Region](./securityhub-regions.html#securityhub-regions-control-support). @@ -169 +167 @@ This control checks whether OpenSearch domains are configured with at least thre -An OpenSearch domain requires at least three data nodes for high availability and fault-tolerance. Deploying an OpenSearch domain with at least three data nodes ensures cluster operations if a node fails. +To achieve cluster-level high availability and fault tolerance, an OpenSearch domain should have at least three data nodes. Deploying an OpenSearch domain with at least three data nodes ensures cluster operations if a node fails.