AWS managed-blockchain documentation change
Summary
Removed KMS encryption policy example from documentation
Security assessment
Removal of a specific encryption policy example without addressing vulnerabilities or modifying security guidance
Diff
diff --git a/managed-blockchain/latest/hyperledger-fabric-dev/managed-blockchain-encryption-at-rest.md b/managed-blockchain/latest/hyperledger-fabric-dev/managed-blockchain-encryption-at-rest.md index ae37ba308..f6d2c5ed8 100644 --- a//managed-blockchain/latest/hyperledger-fabric-dev/managed-blockchain-encryption-at-rest.md +++ b//managed-blockchain/latest/hyperledger-fabric-dev/managed-blockchain-encryption-at-rest.md @@ -184,24 +183,0 @@ To use this policy, replace `aws-region` and `111122223333` in the example with - - { - "Version": "2012-10-17", - "Statement": [ - { - "Sid" : "AllowAccessToUseAMB", - "Effect" : "Allow", - "Principal" : { - "AWS" : "*" - }, - "Action" : [ - "kms:CreateGrant" - ], - "Resource" : "*", - "Condition" : { - "StringEquals" : { - "kms:ViaService" : "managedblockchain.aws-region.amazonaws.com", - "kms:CallerAccount" : "111122223333" - } - } - } - ] - } -