AWS Security ChangesHomeSearch

AWS singlesignon documentation change

Service: singlesignon · 2025-10-01 · Documentation low

File: singlesignon/latest/userguide/encryption-at-rest.md

Summary

Removed hyperlinks to cryptographic concepts while maintaining their definitions in encryption context explanation

Security assessment

Change only affects reference formatting without altering security content or recommendations. The core security concepts of authenticated encryption and additional authenticated data are still described, just without direct links to external definitions.

Diff

diff --git a/singlesignon/latest/userguide/encryption-at-rest.md b/singlesignon/latest/userguide/encryption-at-rest.md
index 49ab53b10..a9ec45d7e 100644
--- a//singlesignon/latest/userguide/encryption-at-rest.md
+++ b//singlesignon/latest/userguide/encryption-at-rest.md
@@ -57 +57 @@ For more information on AWS KMS, see [What is AWS Key Management Service?](https
-An encryption context is an optional set of non-secret key-value pairs that contain additional contextual information about the data. AWS KMS uses the encryption context as [additional authenticated data](https://docs.aws.amazon.com/crypto/latest/userguide/cryptography-concepts.html#term-aad) to support [authenticated encryption](https://docs.aws.amazon.com/crypto/latest/userguide/cryptography-concepts.html#define-authenticated-encryption). When you include an encryption context in a request to encrypt data, AWS KMS binds the encryption context to the encrypted data. To decrypt data, you include the same encryption context in the request. Refer to the [KMS Developer Guide](https://docs.aws.amazon.com/kms/latest/developerguide/encrypt_context.html) for more information about encryption context. 
+An encryption context is an optional set of non-secret key-value pairs that contain additional contextual information about the data. AWS KMS uses the encryption context as additional authenticated data to support authenticated encryption. When you include an encryption context in a request to encrypt data, AWS KMS binds the encryption context to the encrypted data. To decrypt data, you include the same encryption context in the request. Refer to the [KMS Developer Guide](https://docs.aws.amazon.com/kms/latest/developerguide/encrypt_context.html) for more information about encryption context.