AWS Security ChangesHomeSearch

AWS mwaa documentation change

Service: mwaa · 2025-08-28 · Documentation low

File: mwaa/latest/userguide/encryption.md

Summary

Updated documentation links from 'see' to 'refer to' phrasing and minor punctuation fixes. No substantive content changes related to encryption mechanisms.

Security assessment

Changes are editorial improvements to link phrasing and punctuation. No new security information added or vulnerabilities addressed. Encryption documentation remains functionally unchanged.

Diff

diff --git a/mwaa/latest/userguide/encryption.md b/mwaa/latest/userguide/encryption.md
index f3b593052..08d53b781 100644
--- a//mwaa/latest/userguide/encryption.md
+++ b//mwaa/latest/userguide/encryption.md
@@ -26 +26 @@ You can use an [AWS owned key](https://docs.aws.amazon.com/kms/latest/developerg
-To use a customer managed KMS key, you must attach the required policy statement for CloudWatch access to your key policy. When you use a customer managed KMS key for your environment, Amazon MWAA attaches four [grants](https://docs.aws.amazon.com/kms/latest/developerguide/grants.html) on your behalf. For more information on the grants Amazon MWAA attaches to a customer managed KMS key, see [Customer managed keys for data encryption](./custom-keys-certs.html).
+To use a customer managed KMS key, you must attach the required policy statement for CloudWatch access to your key policy. When you use a customer managed KMS key for your environment, Amazon MWAA attaches four [grants](https://docs.aws.amazon.com/kms/latest/developerguide/grants.html) on your behalf. For more information on the grants Amazon MWAA attaches to a customer managed KMS key, refer to [Customer managed keys for data encryption](./custom-keys-certs.html).
@@ -32 +32 @@ If you do not specify a customer managed KMS key, by default, Amazon MWAA uses a
-You pay for the storage and use of AWS owned, or customer managed KMS keys on Amazon MWAA. For more information, see [AWS KMS Pricing](https://aws.amazon.com/kms/pricing/).
+You pay for the storage and use of AWS owned, or customer managed KMS keys on Amazon MWAA. For more information, refer to [AWS KMS Pricing](https://aws.amazon.com/kms/pricing/).
@@ -44 +44 @@ You specify the encryption artifacts used for at rest encryption by specifying a
-**Aurora PostgreSQL** – Amazon MWAA creates one PostgreSQL cluster for your environment. Aurora PostgreSQL encrypts the content with either an AWS owned or customer managed KMS key using SSE. If you are using a customer managed KMS key, Amazon RDS adds at least two grants to the key: one for the cluster and one for the database instance. Amazon RDS might create additional grants if you choose to use your customer managed KMS key on multiple environments. For more information, see [Data protection in Amazon RDS](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/DataDurability.html).
+**Aurora PostgreSQL** – Amazon MWAA creates one PostgreSQL cluster for your environment. Aurora PostgreSQL encrypts the content with either an AWS owned or customer managed KMS key using SSE. If you are using a customer managed KMS key, Amazon RDS adds at least two grants to the key: one for the cluster and one for the database instance. Amazon RDS might create additional grants if you choose to use your customer managed KMS key on multiple environments. For more information, refer to [Data protection in Amazon RDS](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/DataDurability.html).
@@ -50 +50 @@ Data in transit is referred to as data that may be intercepted as it travels the
-Transport Layer Security (TLS) encrypts the Amazon MWAA objects in transit between your environment's Apache Airflow components and other AWS services that integrate with Amazon MWAA. such as Amazon S3. For more information about Amazon S3 encryption, see [Protecting data using encryption](https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingEncryption.html).
+Transport Layer Security (TLS) encrypts the Amazon MWAA objects in transit between your environment's Apache Airflow components and other AWS services that integrate with Amazon MWAA. such as Amazon S3. For more information about Amazon S3 encryption, refer to [Protecting data using encryption](https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingEncryption.html).