AWS singlesignon documentation change
Summary
Removed hyperlinks to cryptographic concepts while maintaining their definitions in encryption context explanation
Security assessment
Change only affects reference formatting without altering security content or recommendations. The core security concepts of authenticated encryption and additional authenticated data are still described, just without direct links to external definitions.
Diff
diff --git a/singlesignon/latest/userguide/encryption-at-rest.md b/singlesignon/latest/userguide/encryption-at-rest.md index 49ab53b10..a9ec45d7e 100644 --- a//singlesignon/latest/userguide/encryption-at-rest.md +++ b//singlesignon/latest/userguide/encryption-at-rest.md @@ -57 +57 @@ For more information on AWS KMS, see [What is AWS Key Management Service?](https -An encryption context is an optional set of non-secret key-value pairs that contain additional contextual information about the data. AWS KMS uses the encryption context as [additional authenticated data](https://docs.aws.amazon.com/crypto/latest/userguide/cryptography-concepts.html#term-aad) to support [authenticated encryption](https://docs.aws.amazon.com/crypto/latest/userguide/cryptography-concepts.html#define-authenticated-encryption). When you include an encryption context in a request to encrypt data, AWS KMS binds the encryption context to the encrypted data. To decrypt data, you include the same encryption context in the request. Refer to the [KMS Developer Guide](https://docs.aws.amazon.com/kms/latest/developerguide/encrypt_context.html) for more information about encryption context. +An encryption context is an optional set of non-secret key-value pairs that contain additional contextual information about the data. AWS KMS uses the encryption context as additional authenticated data to support authenticated encryption. When you include an encryption context in a request to encrypt data, AWS KMS binds the encryption context to the encrypted data. To decrypt data, you include the same encryption context in the request. Refer to the [KMS Developer Guide](https://docs.aws.amazon.com/kms/latest/developerguide/encrypt_context.html) for more information about encryption context.