AWS Security ChangesHomeSearch

AWS systems-manager documentation change

Service: systems-manager · 2025-10-25 · Documentation low

File: systems-manager/latest/userguide/session-manager-logging.md

Summary

Clarified that SSH encryption occurs within a secure TLS connection between AWS CLI and Session Manager endpoints

Security assessment

The change provides more detailed information about encryption layers (TLS) but doesn't address a specific vulnerability. It enhances security documentation by explaining transport security mechanisms.

Diff

diff --git a/systems-manager/latest/userguide/session-manager-logging.md b/systems-manager/latest/userguide/session-manager-logging.md
index a6b4309fa..7acf0197d 100644
--- a//systems-manager/latest/userguide/session-manager-logging.md
+++ b//systems-manager/latest/userguide/session-manager-logging.md
@@ -40 +40 @@ Windows
-  * Logging isn't available for Session Manager sessions that connect through port forwarding or SSH. This is because SSH encrypts all session data, and Session Manager only serves as a tunnel for SSH connections.
+  * Logging isn't available for Session Manager sessions that connect through port forwarding or SSH. This is because SSH encrypts all session data within the secure TLS connection established between the AWS CLI and Session Manager endpoints, and Session Manager only serves as a tunnel for SSH connections.