AWS AmazonCloudWatch documentation change
Summary
Updated documentation link for SSE-KMS key policy requirements in S3 bucket configurations
Security assessment
The change corrects a hyperlink reference but does not introduce or modify security-related content. It maintains existing guidance about KMS key policies for encryption.
Diff
diff --git a/AmazonCloudWatch/latest/logs/mask-sensitive-log-data-audit-findings.md b/AmazonCloudWatch/latest/logs/mask-sensitive-log-data-audit-findings.md index 8fef48657..4dbcb70df 100644 --- a//AmazonCloudWatch/latest/logs/mask-sensitive-log-data-audit-findings.md +++ b//AmazonCloudWatch/latest/logs/mask-sensitive-log-data-audit-findings.md @@ -56 +56 @@ If you send audit findings to a bucket that is protected with SSE-S3, no additio -If you send audit findings to a bucket that is protected with SSE-KMS, you must update the key policy for your KMS key so that the log delivery account can write to your S3 bucket. For more information about the required key policy for use with SSE-KMS, see [Amazon S3](./AWS-logs-and-resource-policy.html#AWS-logs-SSE-KMS-S3) in the Amazon CloudWatch Logs User Guide. +If you send audit findings to a bucket that is protected with SSE-KMS, you must update the key policy for your KMS key so that the log delivery account can write to your S3 bucket. For more information about the required key policy for use with SSE-KMS, see [Amazon S3](./AWS-logs-infrastructure-S3.html#AWS-logs-SSE-KMS-S3) in the Amazon CloudWatch Logs User Guide.