AWS config high security documentation change
Summary
Excluded 'AWS Secret - West' from KMS encryption checks
Security assessment
Allows Redshift clusters in excluded region to operate without KMS encryption, increasing data exposure risk
Diff
diff --git a/config/latest/developerguide/redshift-cluster-kms-enabled.md b/config/latest/developerguide/redshift-cluster-kms-enabled.md index 00f5016d6..b3e657fb7 100644 --- a//config/latest/developerguide/redshift-cluster-kms-enabled.md +++ b//config/latest/developerguide/redshift-cluster-kms-enabled.md @@ -17 +17 @@ Checks if Amazon Redshift clusters are using a specified AWS Key Management Serv -**AWS Region:** All supported AWS regions except Asia Pacific (Thailand), Mexico (Central), Asia Pacific (Taipei) Region +**AWS Region:** All supported AWS regions except Asia Pacific (Thailand), AWS Secret - West, Mexico (Central), Asia Pacific (Taipei) Region