AWS Security ChangesHomeSearch

AWS AmazonCloudWatch documentation change

Service: AmazonCloudWatch · 2025-08-10 · Documentation low

File: AmazonCloudWatch/latest/logs/mask-sensitive-log-data-audit-findings.md

Summary

Updated documentation link for SSE-KMS key policy requirements in S3 bucket configurations

Security assessment

The change corrects a hyperlink reference but does not introduce or modify security-related content. It maintains existing guidance about KMS key policies for encryption.

Diff

diff --git a/AmazonCloudWatch/latest/logs/mask-sensitive-log-data-audit-findings.md b/AmazonCloudWatch/latest/logs/mask-sensitive-log-data-audit-findings.md
index 8fef48657..4dbcb70df 100644
--- a//AmazonCloudWatch/latest/logs/mask-sensitive-log-data-audit-findings.md
+++ b//AmazonCloudWatch/latest/logs/mask-sensitive-log-data-audit-findings.md
@@ -56 +56 @@ If you send audit findings to a bucket that is protected with SSE-S3, no additio
-If you send audit findings to a bucket that is protected with SSE-KMS, you must update the key policy for your KMS key so that the log delivery account can write to your S3 bucket. For more information about the required key policy for use with SSE-KMS, see [Amazon S3](./AWS-logs-and-resource-policy.html#AWS-logs-SSE-KMS-S3) in the Amazon CloudWatch Logs User Guide.
+If you send audit findings to a bucket that is protected with SSE-KMS, you must update the key policy for your KMS key so that the log delivery account can write to your S3 bucket. For more information about the required key policy for use with SSE-KMS, see [Amazon S3](./AWS-logs-infrastructure-S3.html#AWS-logs-SSE-KMS-S3) in the Amazon CloudWatch Logs User Guide.