AWS emr documentation change
Summary
Added link to encryption documentation for EMR WAL using customer KMS keys and updated section title.
Security assessment
Enhances documentation about encryption at rest with KMS, a security feature, but does not address a specific security vulnerability.
Diff
diff --git a/emr/latest/ManagementGuide/emr-data-encryption-options.md b/emr/latest/ManagementGuide/emr-data-encryption-options.md index aa7674ead..b9a65a330 100644 --- a//emr/latest/ManagementGuide/emr-data-encryption-options.md +++ b//emr/latest/ManagementGuide/emr-data-encryption-options.md @@ -77 +77,3 @@ Amazon EMR manages keys for you. By default, Amazon EMR encrypts the data that y -You use an AWS KMS key to set up policies that apply to Amazon EMR WAL. For more information about key requirements for Amazon EMR, see [Using AWS KMS keys for encryption](./emr-encryption-enable.html#emr-awskms-keys). +You use an AWS KMS key to set up policies that apply to Amazon EMR WAL. For more information about configuring encryption at rest for EMR WAL using a customer KMS key, see [Encryption at rest using a customer KMS key for the EMR WAL service](https://docs.aws.amazon.com/emr/latest/ManagementGuide/encryption-at-rest-kms.html). + +###### Note @@ -158 +160 @@ Encrypt data at rest and in transit with Amazon EMR -Create keys and certificates for data encryption with Amazon EMR +Encryption at rest using a customer KMS key for the EMR WAL service