AWS securityhub documentation change
Summary
Updated documentation to reflect rebranding of Security Hub features to Security Hub CSPM (Cloud Security Posture Management), including terminology changes and clarification of administrator roles.
Security assessment
The changes introduce references to CSPM (Cloud Security Posture Management), which is a security-focused service component. However, there is no evidence of addressing a specific vulnerability or security incident - the changes appear to be rebranding/terminology updates rather than security fixes.
Diff
diff --git a/securityhub/latest/userguide/finding-aggregation.md b/securityhub/latest/userguide/finding-aggregation.md index 493dfec86..c210a549d 100644 --- a//securityhub/latest/userguide/finding-aggregation.md +++ b//securityhub/latest/userguide/finding-aggregation.md @@ -3 +3 @@ -[Documentation](/index.html)[AWS Security Hub](/securityhub/index.html)[User Guide](what-is-securityhub.html) +[Documentation](/index.html)[AWS Security Hub](/securityhub/index.html)[ User Guide ](what-is-security-hub-adv.html) @@ -7 +7 @@ Types of data that are aggregatedAggregation for administrator and member accoun -# Understanding cross-Region aggregation in Security Hub +# Understanding cross-Region aggregation in Security Hub CSPM @@ -11 +11 @@ Types of data that are aggregatedAggregation for administrator and member accoun -The _aggregation Region_ is now called the _home Region_. Some Security Hub API operations still use the older term aggregation Region. +The _aggregation Region_ is now called the _home Region_. Some Security Hub CSPM API operations still use the older term aggregation Region. @@ -13 +13 @@ The _aggregation Region_ is now called the _home Region_. Some Security Hub API -By using cross-Region aggregation in AWS Security Hub, you can aggregate findings, finding updates, insights, control compliance statuses, and security scores from multiple AWS Regions to a single home Region. You can then manage all of this data from the home Region. +By using cross-Region aggregation in AWS Security Hub Cloud Security Posture Management (CSPM), you can aggregate findings, finding updates, insights, control compliance statuses, and security scores from multiple AWS Regions to a single home Region. You can then manage all of this data from the home Region. @@ -21 +21 @@ In AWS GovCloud (US), cross-Region aggregation is supported only for findings, f -If a control is enabled in a linked Region but disabled in the home Region, you can see the compliance status of the control from the home Region, but you can't enable or disable that control from the home Region. The exception is if you use [central configuration](./central-configuration-intro.html). If you use central configuration, the delegated Security Hub administrator can configure controls in the home Region and linked Regions from the home Region. +If a control is enabled in a linked Region but disabled in the home Region, you can see the compliance status of the control from the home Region, but you can't enable or disable that control from the home Region. The exception is if you use [central configuration](./central-configuration-intro.html). If you use central configuration, the delegated Security Hub CSPM administrator can configure controls in the home Region and linked Regions from the home Region. @@ -23 +23 @@ If a control is enabled in a linked Region but disabled in the home Region, you -If you have set an home Region, [security scores](./standards-security-score.html) account for control statuses in all linked Regions. To view cross-Region security scores and compliance statuses, add the following permissions to your IAM role that uses Security Hub: +If you have set an home Region, [security scores](./standards-security-score.html) account for control statuses in all linked Regions. To view cross-Region security scores and compliance statuses, add the following permissions to your IAM role that uses Security Hub CSPM: @@ -36 +36 @@ If you have set an home Region, [security scores](./standards-security-score.htm -When cross-Region aggregation is enabled with one or more linked Regions, Security Hub replicates the following data from the linked Regions to the home Region. This occurs in every account that has cross-Region aggregation enabled. +When cross-Region aggregation is enabled with one or more linked Regions, Security Hub CSPM replicates the following data from the linked Regions to the home Region. This occurs in every account that has cross-Region aggregation enabled. @@ -49 +49 @@ When cross-Region aggregation is enabled with one or more linked Regions, Securi -In addition to new data in the previous list, Security Hub also replicates updates to this data between the linked Regions and the home Region. Updates that occur in a linked Region are replicated to the home Region. Updates that occur in the home Region are replicated back to the linked Region. If there are conflicting updates in the home Region and the linked Region, then the most recent update is used. +In addition to new data in the previous list, Security Hub CSPM also replicates updates to this data between the linked Regions and the home Region. Updates that occur in a linked Region are replicated to the home Region. Updates that occur in the home Region are replicated back to the linked Region. If there are conflicting updates in the home Region and the linked Region, then the most recent update is used. @@ -51 +51 @@ In addition to new data in the previous list, Security Hub also replicates updat - + @@ -53 +53 @@ In addition to new data in the previous list, Security Hub also replicates updat -Cross-Region aggregation does not add to the cost of Security Hub. You are not charged when Security Hub replicates new data or updates. +Cross-Region aggregation does not add to the cost of Security Hub CSPM. You are not charged when Security Hub CSPM replicates new data or updates. @@ -59 +59 @@ Your security scores in the home Region are calculated by comparing the number o -Security Hub only aggregates data from Regions where an account has Security Hub enabled. Security Hub is not automatically enabled for an account based on the cross-Region aggregation configuration. +Security Hub CSPM only aggregates data from Regions where an account has Security Hub CSPM enabled. Security Hub CSPM is not automatically enabled for an account based on the cross-Region aggregation configuration. @@ -67 +67 @@ Standalone accounts, member accounts, and administrator accounts can configure c -When an administrator account enables cross-Region aggregation, Security Hub replicates the data that the administrator account generates in all linked Regions to the home Region. In addition, Security Hub identifies the member accounts that are associated with that administrator, and each member account inherits the cross-Region aggregation settings of the administrator. Security Hub replicates the data that a member account generates in all linked Regions to the home Region. +When an administrator account enables cross-Region aggregation, Security Hub CSPM replicates the data that the administrator account generates in all linked Regions to the home Region. In addition, Security Hub CSPM identifies the member accounts that are associated with that administrator, and each member account inherits the cross-Region aggregation settings of the administrator. Security Hub CSPM replicates the data that a member account generates in all linked Regions to the home Region. @@ -69 +69 @@ When an administrator account enables cross-Region aggregation, Security Hub rep -The administrator can access and manage security findings from all member accounts within the administered regions. However, as a Security Hub administrator, you must be signed in to the home Region to view aggregated data from all member accounts and linked Regions. +The administrator can access and manage security findings from all member accounts within the administered regions. However, as a Security Hub CSPM administrator, you must be signed in to the home Region to view aggregated data from all member accounts and linked Regions. @@ -71 +71 @@ The administrator can access and manage security findings from all member accoun -As a Security Hub member account, you must be signed in to the home Region to view aggregated data from your account from all linked Regions. Member accounts don't have permissions to view data from other member accounts. +As a Security Hub CSPM member account, you must be signed in to the home Region to view aggregated data from your account from all linked Regions. Member accounts don't have permissions to view data from other member accounts. @@ -73 +73 @@ As a Security Hub member account, you must be signed in to the home Region to vi -An administrator account may manually invite member accounts or serve as the delegated administrator of an organization that is integrated with AWS Organizations. For a [manually-invited member account](./account-management-manual.html), the administrator must invite the account from the home Region and all linked Regions in order for cross-Region aggregation to work. In addition, the member account must have Security Hub enabled in the home Region and all linked Regions to give the administrator the ability to view findings from the member account. If you don't use the home Region for other purposes, you can disable Security Hub standards and integrations in that Region to prevent charges. +An administrator account may manually invite member accounts or serve as the delegated administrator of an organization that is integrated with AWS Organizations. For a [manually-invited member account](./account-management-manual.html), the administrator must invite the account from the home Region and all linked Regions in order for cross-Region aggregation to work. In addition, the member account must have Security Hub CSPM enabled in the home Region and all linked Regions to give the administrator the ability to view findings from the member account. If you don't use the home Region for other purposes, you can disable Security Hub CSPM standards and integrations in that Region to prevent charges. @@ -96 +96 @@ To use the Amazon Web Services Documentation, Javascript must be enabled. Please -Effect of account actions on Security Hub data +Effect of account actions on CSPM data