AWS iot-mi documentation change
Summary
Added recommendation for protecting sensitive tokens using CloudWatch Logs data protection
Security assessment
Documents best practices for handling sensitive authentication tokens, improving security guidance but not addressing a specific vulnerability.
Diff
diff --git a/iot-mi/latest/devguide/concepts-account-linking.md b/iot-mi/latest/devguide/concepts-account-linking.md index 4184b30f3..1a215db28 100644 --- a//iot-mi/latest/devguide/concepts-account-linking.md +++ b//iot-mi/latest/devguide/concepts-account-linking.md @@ -18,0 +19,2 @@ Account linking is a process that allows managed integrations and the connector +We recommend that you don't log these sensitive tokens in any logs. If however they are stored in logs, we recommend that you use CloudWatch Logs data protection policies to mask the tokens in the logs. For more information, see [Help protect sensitive log data with masking](https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/mask-sensitive-log-data.html). +