AWS securityhub documentation change
Summary
Updated documentation to reflect rebranding of 'Security Hub' announcements to 'Security Hub CSPM' announcements, including changes to section headers, event types, and example messages to specify Cloud Security Posture Management (CSPM) context.
Security assessment
The changes focus on clarifying that announcements pertain specifically to CSPM features rather than general Security Hub updates. While CSPM is a security-related service, there is no evidence of addressing a specific security vulnerability or incident. The updates enhance documentation accuracy for a security feature but do not mitigate an active security risk.
Diff
diff --git a/securityhub/latest/userguide/securityhub-announcements.md b/securityhub/latest/userguide/securityhub-announcements.md index 6aae21f01..2d11776ef 100644 --- a//securityhub/latest/userguide/securityhub-announcements.md +++ b//securityhub/latest/userguide/securityhub-announcements.md @@ -3 +3 @@ -[Documentation](/index.html)[AWS Security Hub](/securityhub/index.html)[User Guide](what-is-securityhub.html) +[Documentation](/index.html)[AWS Security Hub](/securityhub/index.html)[ User Guide ](what-is-security-hub-adv.html) @@ -7 +7 @@ Amazon SNS message format -# Subscribing to Security Hub announcements with Amazon SNS +# Subscribing to Security Hub CSPM announcements with Amazon SNS @@ -9 +9 @@ Amazon SNS message format -This section provides information about subscribing to AWS Security Hub announcements with Amazon Simple Notification Service (Amazon SNS) to receive notifications about Security Hub. +This section provides information about subscribing to AWS Security Hub Cloud Security Posture Management (CSPM) announcements with Amazon Simple Notification Service (Amazon SNS) to receive notifications about Security Hub CSPM. @@ -13 +13 @@ After subscribing, you will receive notifications about the following events (no - * `GENERAL` – General notifications about the Security Hub service. + * `GENERAL` – General notifications about the Security Hub CSPM service. @@ -15 +15 @@ After subscribing, you will receive notifications about the following events (no - * `UPCOMING_STANDARDS_CONTROLS` – Specified Security Hub controls or standards will be released soon. This type of announcement helps you prepare response and remediation workflows in advance of a release. + * `UPCOMING_STANDARDS_CONTROLS` – Specified Security Hub CSPM controls or standards will be released soon. This type of announcement helps you prepare response and remediation workflows in advance of a release. @@ -17 +17 @@ After subscribing, you will receive notifications about the following events (no - * `NEW_REGIONS` – Support for Security Hub is available in a new AWS Region. + * `NEW_REGIONS` – Support for Security Hub CSPM is available in a new AWS Region. @@ -19 +19 @@ After subscribing, you will receive notifications about the following events (no - * `NEW_STANDARDS_CONTROLS` – New Security Hub controls or standards have been added. + * `NEW_STANDARDS_CONTROLS` – New Security Hub CSPM controls or standards have been added. @@ -21 +21 @@ After subscribing, you will receive notifications about the following events (no - * `UPDATED_STANDARDS_CONTROLS` – Existing Security Hub controls or standards have been updated. + * `UPDATED_STANDARDS_CONTROLS` – Existing Security Hub CSPM controls or standards have been updated. @@ -23 +23 @@ After subscribing, you will receive notifications about the following events (no - * `RETIRED_STANDARDS_CONTROLS` – Existing Security Hub controls or standards have been retired. + * `RETIRED_STANDARDS_CONTROLS` – Existing Security Hub CSPM controls or standards have been retired. @@ -29 +29 @@ After subscribing, you will receive notifications about the following events (no - * `NEW_FEATURE` – New Security Hub features are available. + * `NEW_FEATURE` – New Security Hub CSPM features are available. @@ -31 +31 @@ After subscribing, you will receive notifications about the following events (no - * `UPDATED_FEATURE` – Existing Security Hub features have been updated. + * `UPDATED_FEATURE` – Existing Security Hub CSPM features have been updated. @@ -36 +36 @@ After subscribing, you will receive notifications about the following events (no -Notifications are available in all formats that Amazon SNS supports. You can subscribe to Security Hub announcements in all [AWS Regions that Security Hub is available in](https://docs.aws.amazon.com/general/latest/gr/sechub.html). +Notifications are available in all formats that Amazon SNS supports. You can subscribe to Security Hub CSPM announcements in all [AWS Regions that Security Hub CSPM is available in](https://docs.aws.amazon.com/general/latest/gr/sechub.html). @@ -42 +42 @@ A user must have `Subscribe` permissions to subscribe to an Amazon SNS topic. Yo -Security Hub sends Amazon SNS announcements about updates to the Security Hub service to any subscribed AWS account. To receive notifications about Security Hub findings, see [Reviewing finding details and finding history in Security Hub](./securityhub-findings-viewing.html). +Security Hub CSPM sends Amazon SNS announcements about updates to the Security Hub CSPM service to any subscribed AWS account. To receive notifications about Security Hub CSPM findings, see [Reviewing finding details and history in Security Hub CSPM](./securityhub-findings-viewing.html). @@ -84 +84 @@ AWS GovCloud (US-West) | `arn:aws-us-gov:sns:us-gov-west-1:239334163374:Security -Messages are typically the same across Regions within a [partition](https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html), so you can subscribe to one Region in each partition to receive announcements that affect all Regions in that partition. Announcements associated with member accounts are not replicated in the administrator account. As a result, each account, including the administrator account, will only have one copy of each announcement. You can decide which account you want to use to subscribe to Security Hub announcements. +Messages are typically the same across Regions within a [partition](https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html), so you can subscribe to one Region in each partition to receive announcements that affect all Regions in that partition. Announcements associated with member accounts are not replicated in the administrator account. As a result, each account, including the administrator account, will only have one copy of each announcement. You can decide which account you want to use to subscribe to Security Hub CSPM announcements. @@ -86 +86 @@ Messages are typically the same across Regions within a [partition](https://docs -For information about the cost of subscribing to Security Hub announcements, see [Amazon SNS pricing](https://aws.amazon.com/sns/pricing/). +For information about the cost of subscribing to Security Hub CSPM announcements, see [Amazon SNS pricing](https://aws.amazon.com/sns/pricing/). @@ -88 +88 @@ For information about the cost of subscribing to Security Hub announcements, see -###### Subscribing to Security Hub announcements (console) +###### Subscribing to Security Hub CSPM announcements (console) @@ -92 +92 @@ For information about the cost of subscribing to Security Hub announcements, see - 2. In the Region list, choose the Region in which you want to subscribe to Security Hub announcements. This example uses the `us-west-2` Region. + 2. In the Region list, choose the Region in which you want to subscribe to Security Hub CSPM announcements. This example uses the `us-west-2` Region. @@ -98 +98 @@ For information about the cost of subscribing to Security Hub announcements, see - 5. For **Protocol** , choose how you want to receive Security Hub announcements. If you choose **Email** , for **Endpoint** , enter the email address that you want to use to receive announcements. + 5. For **Protocol** , choose how you want to receive Security Hub CSPM announcements. If you choose **Email** , for **Endpoint** , enter the email address that you want to use to receive announcements. @@ -107 +107 @@ For information about the cost of subscribing to Security Hub announcements, see -###### Subscribing to Security Hub announcements (AWS CLI) +###### Subscribing to Security Hub CSPM announcements (AWS CLI) @@ -120 +120 @@ For information about the cost of subscribing to Security Hub announcements, see -The following examples show Security Hub announcements from Amazon SNS about the introduction of new security controls. Message content varies based on announcement type, but the format is the same for all announcement types. Optionally, a `Link` field that provides details about the announcement may be included. +The following examples show Security Hub CSPM announcements from Amazon SNS about the introduction of new security controls. Message content varies based on announcement type, but the format is the same for all announcement types. Optionally, a `Link` field that provides details about the announcement may be included. @@ -122 +122 @@ The following examples show Security Hub announcements from Amazon SNS about the -**Example: Security Hub announcement for new controls (email protocol)** +**Example: Security Hub CSPM announcement for new controls (email protocol)** @@ -127 +127 @@ The following examples show Security Hub announcements from Amazon SNS about the - "Title":"[New Controls] 36 new Security Hub controls added to the AWS Foundational Security Best Practices standard", + "Title":"[New Controls] 36 new Security Hub CSPM controls added to the AWS Foundational Security Best Practices standard", @@ -129 +129 @@ The following examples show Security Hub announcements from Amazon SNS about the - Amazon Simple Storage Service (Amazon S3) (S3.13), Amazon Simple Notification Service (SNS.2), AWS WAF (WAF.2, WAF.3, WAF.4, WAF.6, WAF.7, WAF.8). If you enabled the AWS Foundational Security Best Practices standard in an account and configured Security Hub to automatically enable new controls, these controls are enabled by default. Availability of controls can vary by Region. " + Amazon Simple Storage Service (Amazon S3) (S3.13), Amazon Simple Notification Service (SNS.2), AWS WAF (WAF.2, WAF.3, WAF.4, WAF.6, WAF.7, WAF.8). If you enabled the AWS Foundational Security Best Practices standard in an account and configured Security Hub CSPM to automatically enable new controls, these controls are enabled by default. Availability of controls can vary by Region. " @@ -132 +132 @@ The following examples show Security Hub announcements from Amazon SNS about the -**Example: Security Hub announcement for new controls (email-JSON protocol)** +**Example: Security Hub CSPM announcement for new controls (email-JSON protocol)** @@ -139,2 +139,2 @@ The following examples show Security Hub announcements from Amazon SNS about the - "Message" : "{\"AnnouncementType\":\"NEW_STANDARDS_CONTROLS\",\"Title\":\"[New Controls] 36 new Security Hub controls added to the AWS Foundational Security Best Practices standard\",\"Description\":\"We have added 36 new controls to the AWS Foundational Security Best Practices standard. These include controls for Amazon Auto Scaling (AutoScaling.3, AutoScaling.4, AutoScaling.6), AWS CloudFormation (CloudFormation.1), Amazon CloudFront (CloudFront.10), Amazon Elastic Compute Cloud (Amazon EC2) (EC2.23, EC2.24, EC2.27), Amazon Elastic Container Registry (Amazon ECR) (ECR.1, ECR.2), Amazon Elastic Container Service (Amazon ECS) (ECS.3, ECS.4, ECS.5, ECS.8, ECS.10, ECS.12), Amazon Elastic File System (Amazon EFS) (EFS.3, EFS.4), Amazon Elastic Kubernetes Service (Amazon EKS) (EKS.2), Elastic Load Balancing (ELB.12, ELB.13, ELB.14), Amazon Kinesis (Kinesis.1), AWS Network Firewall (NetworkFirewall.3, NetworkFirewall.4, NetworkFirewall.5), Amazon OpenSearch Service (OpenSearch.7), Amazon Redshift (Redshift.9), - Amazon Simple Storage Service (Amazon S3) (S3.13), Amazon Simple Notification Service (SNS.2), AWS WAF (WAF.2, WAF.3, WAF.4, WAF.6, WAF.7, WAF.8). If you enabled the AWS Foundational Security Best Practices standard in an account and configured SSecurity Hub to automatically enable new controls, these controls are enabled by default. Availability of controls can vary by Region. \"}", + "Message" : "{\"AnnouncementType\":\"NEW_STANDARDS_CONTROLS\",\"Title\":\"[New Controls] 36 new Security Hub CSPM controls added to the AWS Foundational Security Best Practices standard\",\"Description\":\"We have added 36 new controls to the AWS Foundational Security Best Practices standard. These include controls for Amazon Auto Scaling (AutoScaling.3, AutoScaling.4, AutoScaling.6), AWS CloudFormation (CloudFormation.1), Amazon CloudFront (CloudFront.10), Amazon Elastic Compute Cloud (Amazon EC2) (EC2.23, EC2.24, EC2.27), Amazon Elastic Container Registry (Amazon ECR) (ECR.1, ECR.2), Amazon Elastic Container Service (Amazon ECS) (ECS.3, ECS.4, ECS.5, ECS.8, ECS.10, ECS.12), Amazon Elastic File System (Amazon EFS) (EFS.3, EFS.4), Amazon Elastic Kubernetes Service (Amazon EKS) (EKS.2), Elastic Load Balancing (ELB.12, ELB.13, ELB.14), Amazon Kinesis (Kinesis.1), AWS Network Firewall (NetworkFirewall.3, NetworkFirewall.4, NetworkFirewall.5), Amazon OpenSearch Service (OpenSearch.7), Amazon Redshift (Redshift.9), + Amazon Simple Storage Service (Amazon S3) (S3.13), Amazon Simple Notification Service (SNS.2), AWS WAF (WAF.2, WAF.3, WAF.4, WAF.6, WAF.7, WAF.8). If you enabled the AWS Foundational Security Best Practices standard in an account and configured SSecurity Hub CSPM to automatically enable new controls, these controls are enabled by default. Availability of controls can vary by Region. \"}", @@ -154 +154 @@ To use the Amazon Web Services Documentation, Javascript must be enabled. Please -Creating resources with CloudFormation +Creating CSPM resources with CloudFormation @@ -156 +156 @@ Creating resources with CloudFormation -Security +Disabling Security Hub CSPM