AWS incident-manager medium security documentation change
Summary
Updated service principal endpoints with specific regional suffixes
Security assessment
Specifying regional service endpoints in encryption policies prevents potential cross-region access issues and enforces regional isolation, improving security posture.
Diff
diff --git a/incident-manager/latest/userguide/data-protection.md b/incident-manager/latest/userguide/data-protection.md index 01f31047b..378354650 100644 --- a//incident-manager/latest/userguide/data-protection.md +++ b//incident-manager/latest/userguide/data-protection.md @@ -68,2 +68,2 @@ To allow Incident Manager to use your customer managed key to encrypt your data, - "ssm-incidents.amazonaws.com", - "ssm-contacts.amazonaws.com" + "ssm-incidents.us-east-2.amazonaws.com", + "ssm-contacts.us-east-2.amazonaws.com"