AWS kms documentation change
Summary
Updated resource ARN patterns in IAM policy examples to use wildcards
Security assessment
Clarifies policy syntax for key management but doesn't address a specific vulnerability. Improves security documentation accuracy for resource patterns.
Diff
diff --git a/kms/latest/developerguide/cmks-in-iam-policies.md b/kms/latest/developerguide/cmks-in-iam-policies.md index db37c0982..a60c2f4fd 100644 --- a//kms/latest/developerguide/cmks-in-iam-policies.md +++ b//kms/latest/developerguide/cmks-in-iam-policies.md @@ -73,2 +73,2 @@ JSON - "arn:aws:kms:***** :111122223333:key/***** ", - "arn:aws:kms:***** :444455556666:key/***** " + "arn:aws:kms:*:111122223333:key/*", + "arn:aws:kms:*:444455556666:key/*"