AWS Security ChangesHomeSearch

AWS sap documentation change

Service: sap · 2025-10-28 · Documentation low

File: sap/latest/general/aws-nitro.md

Summary

Fixed hyphenation in 'purpose-built', updated integration title to match KMS changes, and removed 'for RISE with SAP' from WorkSpaces description

Security assessment

Grammatical corrections and title standardization. No changes to security-relevant content about TPM, secure boot, or encryption mechanisms. The Nitro Controller security description remains unchanged.

Diff

diff --git a/sap/latest/general/aws-nitro.md b/sap/latest/general/aws-nitro.md
index 07f8fe2f1..44854f481 100644
--- a//sap/latest/general/aws-nitro.md
+++ b//sap/latest/general/aws-nitro.md
@@ -21 +21 @@ The resulting Nitro System has been divided into the following components:
-Nitro Controller - This is the sole outward facing management interface between the physical server and the control planes for EC2, Amazon EBS, and Amazon VPC. It is implemented as passive API endpoints where each action is logged and all attempts to call an API are cryptographically authenticated and authorized using a fine-grained access control model.Nitro Controller also provides the hardware root of trust for the overall system and is responsible for managing all other components of the server system including the firmware loaded in the system. Firmware for the system is stored on an encrypted SSD that is attached directly to the Nitro Controller. The encryption key for the SSD is designed to be protected by the combination of a Trusted Platform Module (TPM) and the secure boot features of the SoC.Nitro Cards purpose built for specific functions Nitro Cards purpose built for specific functions:
+Nitro Controller - This is the sole outward facing management interface between the physical server and the control planes for EC2, Amazon EBS, and Amazon VPC. It is implemented as passive API endpoints where each action is logged and all attempts to call an API are cryptographically authenticated and authorized using a fine-grained access control model.Nitro Controller also provides the hardware root of trust for the overall system and is responsible for managing all other components of the server system including the firmware loaded in the system. Firmware for the system is stored on an encrypted SSD that is attached directly to the Nitro Controller. The encryption key for the SSD is designed to be protected by the combination of a Trusted Platform Module (TPM) and the secure boot features of the SoC.Nitro Cards purpose-built for specific functions Nitro Cards purpose-built for specific functions:
@@ -77 +77 @@ To use the Amazon Web Services Documentation, Javascript must be enabled. Please
-Integrating SAP Data Custodian Key Management Service with AWS Key Management Service (AWS KMS)
+Integrating SAP Data Custodian KMS with AWS KMS
@@ -79 +79 @@ Integrating SAP Data Custodian Key Management Service with AWS Key Management Se
-Amazon WorkSpaces as remote access solution for RISE with SAP
+Amazon WorkSpaces as remote access solution