AWS managedservices documentation change
Summary
Updated change type reference for sharing KMS keys between accounts
Security assessment
Documents proper procedure for sharing encryption keys (KMS), which is security-relevant best practice. However, this appears to be a routine documentation update rather than addressing a specific security vulnerability.
Diff
diff --git a/managedservices/latest/appguide/tools-account-enable.md b/managedservices/latest/appguide/tools-account-enable.md index 5902ce4c7..1ddd19c8c 100644 --- a//managedservices/latest/appguide/tools-account-enable.md +++ b//managedservices/latest/appguide/tools-account-enable.md @@ -29 +29 @@ As you use KMS to encrypt ingested resources, using a single KMS key that is sha -Use the Management | Other | Other | Create (ct-1e1xtak34nx76) change type to request that the new KMS key be shared with your application accounts where ingested AMIs will reside. +Use the Management | Advanced stack components | KMS key | Share (review required) change type (ct-05yb337abq3x5) to request that the new KMS key be shared with your application accounts where ingested AMIs will reside.