AWS step-functions documentation change
Summary
Updated example KMS policy region from ca-central-1 to us-east-1
Security assessment
Change modifies a regional example but doesn't introduce new security concepts or address vulnerabilities. Security controls remain the same.
Diff
diff --git a/step-functions/latest/dg/encryption-at-rest.md b/step-functions/latest/dg/encryption-at-rest.md index 7e6a0b242..780ac9b71 100644 --- a//step-functions/latest/dg/encryption-at-rest.md +++ b//step-functions/latest/dg/encryption-at-rest.md @@ -341 +341 @@ The `kms:ViaService` condition key limits use of an AWS Key Management Service k -The following example policy uses the `kms:ViaService` condition to allow the AWS KMS key to be used for specific actions only when the request originates from Step Functions in the `ca-central-1` region, acting on behalf of the ExampleRole: +The following example policy uses the `kms:ViaService` condition to allow the AWS KMS key to be used for specific actions only when the request originates from Step Functions in the `us-east-1` region, acting on behalf of the ExampleRole: